Full Disclosure mailing list archives
RE: A worm...
From: ATD <simon () snosoft com>
Date: 26 Jun 2003 11:14:46 -0400
Yes,
And this was my point. Are the crafty "worm gods" creating worms that
evade detection by using compression and other methods? If they are
doing this, and if they are creating the "stealth worms" whats next. Zip
files would be just one of hundreds of ways to hide worms. Maybe the
virus scanning technology needs to be kicked up a notch or two.
On Wed, 2003-06-25 at 16:32, *Hobbit* wrote:
Maybe I'm a bit out of the loop, but this one is interesting BECAUSE
of the .zip encapsulation. The fact that it spreads at all is due
to one or both of
.ZIP archives now auto-explode and auto-EXECUTE contents
inside some MUAs
people are being REALLY stupid
The first one, if true, is disturbing because it used to be that
wrapping content inside a .zip attachment is one way to get known
bad content to colleagues and NOT have it donked by [most] content
filters. It should take manual, explicit action by the recipient
to open the .zip and be careful with the contents.
Is this no longer the case?! What idiot mail-readers have auto-
execute-zip-contents capability, if any?? I knew this was comin'
someday, even so...
_H*
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- RE: A worm..., (continued)
- RE: A worm... ATD (Jun 26)
- Re: A worm... Nexus (Jun 26)
- Re: A worm... ATD (Jun 26)
- RE: A worm... Richard M. Smith (Jun 26)
- RE: A worm... Ron DuFresne (Jun 26)
- Re: A worm... Roy S. Rapoport (Jun 26)
- Re: A worm... morning_wood (Jun 26)
- SV: A worm... Peter Kruse (Jun 26)
- Re: A worm... ATD (Jun 26)
- RE: A worm... ATD (Jun 26)
- RE: A worm... M. Osten (Jun 26)
- Re: A worm... Brett Hutley (Jun 26)
- RE: A worm... Nick FitzGerald (Jun 26)
- Re: A worm... morning_wood (Jun 26)
- RE: A worm... ATD (Jun 26)