Bugtraq mailing list archives
Suspect 'advisory' from someone claiming to be from Microsoft (was Fwd: Internet Security Update)
From: Marlon Borba <mborba1 () terra com br>
Date: Sun, 10 Mar 2002 15:36:38 -0300
Fellow bugtraqers, I received this 'advisory' in one of my e-mail addresses.Since this differs A LOT from real Microsoft advisories I suspect someone is 'forging' alerts. This one came with an executable attachment (what Microsoft rarely does; usually MS suggests a place in his technical support site). Be careful with fake 'advisories' like this, specially if they come with an '.exe' attached.
Cheers, Marlon.
X-Persona: <Marlon - STI> Received: by mail5.lc-3.la.inter.net (mbox marlon)(with Cubic Circle's cucipop (v1.31 4.3 1998/05/13) Sun Mar 10 15:27:32 2002)X-From_: mic_ykc () i-cable com hk Sun Mar 10 10:36:32 2002 Return-Path: <mic_ykc () i-cable com hk> Received: from sitar.i-cable.com (sitar.i-cable.com [210.80.60.11]) by mx5.lc-3.la.inter.net (8.9.3-d/8.9.3) with SMTP id KAA11731 for <marlon () sti com br>; Sun, 10 Mar 2002 10:36:26 -0300 Date: Sun, 10 Mar 2002 10:36:26 -0300 Message-Id: <200203101336.KAA11731 () mx5 lc-3 la inter net> Received: (qmail 20871 invoked by uid 104); 10 Mar 2002 13:35:12 -0000 Received: from cm61-10-73-119.hkcable.com.hk (HELO pfuckie) (61.10.73.119) by 0 with SMTP; 10 Mar 2002 13:35:06 -0000 From: "Microsoft Corporation Security Center" <rdquest12 () microsoft com> To: "Microsoft Customer" <'customer () yourdomain com'> Subject: Internet Security Update Reply-To: <rdquest12 () microsoft com> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="NextPart_000235" Microsoft Customer, this is the latest version of security update, the known security vulnerabilities affecting Internet Explorer and MS Outlook/Express as well as six new vulnerabilities, and is discussed in Microsoft Security Bulletin MS02-005. Install now to protect your computer from these vulnerabilities, the most serious of which could allow an attacker to run code on your computer. Description of several well-know vulnerabilities:- "Incorrect MIME Header Can Cause IE to Execute E-mail Attachment" vulnerability.
Current thread:
- Suspect 'advisory' from someone claiming to be from Microsoft (was Fwd: Internet Security Update) Marlon Borba (Mar 11)