 Worm In The Wild Using The Wmf Exploit |
Welcome Guest ( Log In | Click here to Register a free account now! )
Register a free account to unlock additional features at BleepingComputer.com
Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.| Important Announcement: The winners of the BC Million Post contest have been announced. You can read who the winners are at this post. - BleepingComputer Management |
  |
 Dec 31 2005, 05:57 PM
Post
#1
|
|
 Bleep Bleep!  Group: Admin Posts: 29,367 Joined: 24-January 04 From: USA Member No.: 3  |
 MSN Messenger worm utilizing the WMF exploit are being spotted in the Netherlands.A new worm is spreading using MSN Messenger that so far have been localized to the Netherlands. This worm will prompt you to open a link that contains a link to the image xmas-2006 FUNNY.jpg. The image is actually an HTML file that will load a malformed WMF file which will ultimately install other backdoor worms and other malware. Keep a lookout when opening any image as we move into the New Year. Do not forget to unregister your shimgvw.dll to help reduce your risks of being infected by one of these WMF files.  Link: Windows Metafile Exploit Mitigation By Unregistering Shimgvw.dll Link: Microsoft WMF Exploit Advisory Link: SANS Report of WMF Worm-------------------- Lawrence
|
 |
 
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
| Lo-Fi Version | Time is now: 22nd November 2008 - 08:45 AM |
© 2003-2008 All Rights Reserved Bleeping Computer LLC.