Dailydave mailing list archives

Re: IE attack...

From: David Barroso <dbarroso () s21sec com>
Date: Sat, 25 Mar 2006 17:49:35 +0100

Dave Aitel dijo el 25/03/2006 a las 17:41:08 CET:

So this is the IE attack various sites are owning people with...I
stumbled on it while browsing random things. It's been a pretty bad
week for IE this week. Of course, it's been a pretty bad year for IE.
Been a pretty bad time all around for IE. Motto: "Giving Host
Intrusion Prevention vendors case study after case study."

I don't know why the other lists aren't posting this. Maybe there was
a memo that went around where you try to keep people from knowing what
they're actually at risk from.


There are plenty of websites with exactly the same shellcode, that downloads
the file http://www.fullfatskinny.com/ca.exe, which in turn, downloads
http://www.fullfatskinny.com/calc.exe.

Full Fat Skinny? :-?

Current thread:

IE attack... Dave Aitel (Mar 25)
- RE: IE attack... Anthony Aykut (Mar 25)
- Re: IE attack... Alexander Sotirov (Mar 25)
- Re: IE attack... David Barroso (Mar 25)
- Re: IE attack... str0ke (Mar 25)
- <Possible follow-ups>
- Re: IE attack... Juha-Matti Laurio (Mar 25)