Microsoft Virus

Discussion in 'Windows Desktop Systems' started by Electronic Punk, Apr 21, 2002.

  1. Electronic Punk

    Electronic Punk Administrator Staff Member Political User Folding Team

    Messages:
    18,590
    Location:
    Copenhagen, Denmark
    Don't run the attachement... it contains a virus!!
    ===================================

    I just recieved a virus via email claiming to be from Microsoft Corporation Security Centre entitled Internet Security Update.

    Microsoft Customer,

    this is the latest version of security update, the
    known security vulnerabilities affecting Internet Explorer and
    MS Outlook/Express as well as six new vulnerabilities, and is
    discussed in Microsoft Security Bulletin MS02-005. Install now to
    protect your computer from these vulnerabilities, the most serious of which
    could allow an attacker to run code on your computer.


    Description of several well-know vulnerabilities:

    - "Incorrect MIME Header Can Cause IE to Execute E-mail Attachment" vulnerability.
    If a malicious user sends an affected HTML e-mail or hosts an affected
    e-mail on a Web site, and a user opens the e-mail or visits the Web site,
    Internet Explorer automatically runs the executable on the user's computer.

    - A vulnerability that could allow an unauthorized user to learn the location
    of cached content on your computer. This could enable the unauthorized
    user to launch compiled HTML Help (.chm) files that contain shortcuts to
    executables, thereby enabling the unauthorized user to run the executables
    on your computer.

    - A new variant of the "Frame Domain Verification" vulnerability could enable a
    malicious Web site operator to open two browser windows, one in the Web site's
    domain and the other on your local file system, and to pass information from
    your computer to the Web site.

    - CLSID extension vulnerability. Attachments which end with a CLSID file extension
    do not show the actual full extension of the file when saved and viewed with
    Windows Explorer. This allows dangerous file types to look as though they are simple,
    harmless files - such as JPG or WAV files - that do not need to be blocked.


    System requirements:
    Versions of Windows no earlier than Windows 95.

    This update applies to:
    Versions of Internet Explorer no earlier than 4.01
    Versions of MS Outlook no earlier than 8.00
    Versions of MS Outlook Express no earlier than 4.01

    How to install
    Run attached file q216309.exe

    How to use
    You don't need to do anything after installing this item.


    For more information about these issues, read Microsoft Security Bulletin MS02-005, or visit link below.
    http://www.microsoft.com/windows/ie/downloads/critical/default.asp
    If you have some questions about this article contact us at rdquest12@microsoft.com

    Thank you for using Microsoft products.

    With friendly greetings,
    MS Internet Security Center.
    ----------------------------------------
    ----------------------------------------
    Microsoft is registered trademark of Microsoft Corporation.
    Windows and Outlook are trademarks of Microsoft Corporation.
     
  2. oerficus

    oerficus OSNN Addict

    Messages:
    161
    Location:
    Austria
    Thx!
    Hope you are not infected

    CHeers, Oerficus
     
  3. Jewelzz

    Jewelzz OSNN Godlike Veteran

    Messages:
    10,977
    Location:
    California
    Thanx!

    Thanx for the warning EP :)
     
  4. max

    max Guest

  5. Electronic Punk

    Electronic Punk Administrator Staff Member Political User Folding Team

    Messages:
    18,590
    Location:
    Copenhagen, Denmark
    When was it circulating ? Don't remember anything recent, so it seems a bit bizarre to get it now
     
  6. Terrahertz

    Terrahertz Extinction Agenda Political User Folding Team

    Messages:
    972
    Location:
    New York
    Thanks for the news Electronic Punk I'll spread the word to my friends and family.
     
  7. voy1d

    voy1d Guest

    i'm pretty sure it has been around for the better part of 2 months now.
     
  8. billy20

    billy20 Guest

    I just got one claiming it was from symantec the w32.elkern cleaner, checked the properties and it was from an aol account glad I didn't touch the attachments, deleted right away.
    Bill
     
  9. xsivforce

    xsivforce Prodigal Son Folding Team

    Messages:
    8,547
    Location:
    Texas, USA
    :() Nobody ever sends me anything. :)(
     
  10. Jewelzz

    Jewelzz OSNN Godlike Veteran

    Messages:
    10,977
    Location:
    California
    Heh, I'll send ya something ;)
     
  11. xsivforce

    xsivforce Prodigal Son Folding Team

    Messages:
    8,547
    Location:
    Texas, USA
    As long as it' not a virus. ;)
     
  12. Rickman

    Rickman OSNN Addict

    Messages:
    72
    Location:
    NJ
    EP thank's for the info.