[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Re: MS04-028 Jpeg EXPLOIT - msn

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] Re: MS04-028 Jpeg EXPLOIT - msn
From: "i.t " <fulldis@xxxxxxxxxxxxxxx>
Date: Sun, 26 Sep 2004 11:57:33 +0200

> On Saturday 25 September 2004 16:59, raza wrote:
> > I just compiled this and it works well..
> >
 ...
> yes and it works very well.
> > I can see this ones gaana be fun...
> We'll have a worm within days.

for nearly all of my clients using win xp I've deinstalled win messenger.
one urgently wanted it back for communicating in real-time; and, of course, 
it's much more fun seeing a live picture of the counterpart(s) in the chat 
window...

even having installed sp2 and the newest patches plus AV I can imagine a virus 
spreading within those pictures throughout the whole msn and so on...
any other defense?
or ist this too much paranoia?

i.t

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] MS04-028 Jpeg EXPLOIT with Reverse and Bind shell ...
  - From: raza
- Re: [Full-Disclosure] MS04-028 Jpeg EXPLOIT with Reverse and Bind shell ...
  - From: Filbert

Prev by Date: Re: [Full-Disclosure] Windoze almost managed to 200x repeat 9/11
Next by Date: Re: [Full-Disclosure] Windoze almost managed to 200x repeat 9/11
Previous by thread: Re: [Full-Disclosure] MS04-028 Jpeg EXPLOIT with Reverse and Bind shell ...
Next by thread: Re: [Full-Disclosure] MS04-028 Jpeg EXPLOIT with Reverse and Bind shell ...
Index(es):
- Date
- Thread