funsec mailing list archives
potential worm exploiting WMF [was: Ilfak's WMF patch v. Microsoft's solution]
From: Gadi Evron <ge () linuxbox org>
Date: Tue, 03 Jan 2006 10:41:36 +0200
I don't think it's possible for a worm on this issue to be fully-automated even to the extent that opening an e-mail could trigger an infection. Some clients are obviously a different story, but Outlook/Outlook Express can't be infected automatically.
Hi Matthew..Well, maybe a worm won't work best being sent via email, but try and look at what might work instead.. and the Bad Guys will surely find it.
They already used sending via IM, sending URL's.. etc. If spam is any GIVE-AWAY, these tactics work.It is one of the oldest tricks in the book to infect people.. via web pages. No need for much innovation.
Gadi. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- RE: Ilfak's WMF patch v. Microsoft's solution, (continued)
- RE: Ilfak's WMF patch v. Microsoft's solution Richard M. Smith (Jan 02)
- Re: Ilfak's WMF patch v. Microsoft's solution Alex Shipp (elist) (Jan 03)
- RE: Ilfak's WMF patch v. Microsoft's solution Larry Seltzer (Jan 02)
- RE: Ilfak's WMF patch v. Microsoft's solution Richard M. Smith (Jan 02)
- RE: Ilfak's WMF patch v. Microsoft's solution Larry Seltzer (Jan 02)
- Re: Ilfak's WMF patch v. Microsoft's solution Aviram Jenik (Jan 02)
- RE: Ilfak's WMF patch v. Microsoft's solution Richard M. Smith (Jan 02)
- Re: Ilfak's WMF patch v. Microsoft's solution Matthew Murphy (Jan 02)
- RE: Ilfak's WMF patch v. Microsoft's solution Richard M. Smith (Jan 02)
- Re: Ilfak's WMF patch v. Microsoft's solution Matthew Murphy (Jan 02)
- potential worm exploiting WMF [was: Ilfak's WMF patch v. Microsoft's solution] Gadi Evron (Jan 03)
- Re: potential worm exploiting WMF [was: Ilfak's WMF patch v. Microsoft's solution] Matthew Murphy (Jan 03)