lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <9E97F0997FB84D42B221B9FB203EFA27171844@dc1ms2.msad.brookshires.net>
From: toddtowles at brookshires.com (Todd Towles)
Subject: Spyware installs with no interaction in IE on fully patched XP SP2 box

Aren't their still cross-scripting problems with IE still? Plus I think
the Drag and Drop exploit is still unpatched? Comments anyone?

> -----Original Message-----
> From: full-disclosure-admin@...ts.netsys.com 
> [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of 
> Harlan Carvey
> Sent: Sunday, October 03, 2004 2:37 PM
> To: full-disclosure@...ts.netsys.com
> Cc: Joel R. Helgeson; Geraldo Rivera
> Subject: Re: [Full-Disclosure] Spyware installs with no 
> interaction in IE on fully patched XP SP2 box
> 
> 
> > > This machine is a fully patched XP SP2 box, with
> > the default security
> > > settings for IE's Internet Zone. Does anybody know
> > what method this crap
> > > could be using to install without any user
> > interaction?
> 
> It's a little hard to tell accurately without taking a look 
> at what you removed; ie, saying that you cleaned things out 
> of the Registry is great, but without knowing what keys you 
> "cleaned", it's hard to tell.
> 
> However, doing a quick search on Google for "atpartners", 
> some of the info I found points to BHOs...
> 
> Sorry, wish I could help more, but I'd need more info...
> 
> =====
> ------------------------------------------
> Harlan Carvey, CISSP
> "Windows Forensics and Incident Recovery"
> http://www.windows-ir.com
> http://groups.yahoo.com/group/windowsir/
> 
> "Meddle not in the affairs of dragons, for you are crunchy, 
> and good with ketchup."
> 
> "The simplicity of this game amuses me. 
> Bring me your finest meats and cheeses."
> ------------------------------------------
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ