Thursday, May 25, 2017
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Samsung Wants to Lead the Foundry Race With Process Roadmap Down to 4nm
Western Digital Raises its Offer For Toshiba's Memory Business: report
Sony Releases Second-Generation Generation of Digital Paper
DJI Spark Drone Takes Off From Your Hand
Xbox Game Pass Launches June 1 With More Than 100 Games
Intel to Integrate Thunderbolt 3 into Future CPUs
Hackers Expose Galaxy S8's Iris Scanner Security, Samsung Investigates Issue
Samsung Gear 360 Availabile In-Stores For $230
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > Instant...
Last 7 Days News : SU MO TU WE TH FR SA All News

Thursday, September 30, 2004
Instant messaging worm exploits JPEG flaw


Security experts have spotted the first attempts to create an Internet worm that propagates using instant messages and exploits a recently disclosed flaw in Microsoft software.

Researchers at The SANS Institute's Internet Storm Center (ISC) have had two reports of users receiving messages on America Online's AOL Instant Messenger service that lured them to Web sites containing malicious code, said Johannes Ullrich, chief technology officer at SANS ISC, in an interview on Wednesday. The messages told the users to "Check out my profile, click GET INFO!"

When visiting the Web sites, the malicious code would attempt to install "backdoor" software on the user's PC that gives remote attackers total control over the machine. Additionally, messages containing a link to the site would be sent out to all contacts on the victim's instant messenger contacts list, Ullrich said.

The malicious code is embedded in a JPEG image and exploits a security flaw in the way many Microsoft applications process such images. Microsoft identified and patched the flaw on Sept. 14, but users have complained that patching is onerous because several applications, including Office and Windows, require separate patches.


Previous
Next
Samsung working on tiny drive        All News        Piracy driving Linux PC shipments
Samsung working on tiny drive     General Computing News      Piracy driving Linux PC shipments

Source Link Get RSS feed Easy Print E-Mail this Message

Related News
BUILD 2017: Microsoft Announces New Tools and Services to Help Developers Build More Intelligent Apps
Microsoft's Nadella Hints On A Possible Surface Phone
Microsoft Cloud Strength Highlights Third Quarter Results
Microsoft Says U.S. Foreign Intelligence Surveillance Requests Doubled
Microsoft Announces Patent License Agreement with Toyota
Adobe, Microsoft To Offer Solutions That Share Sales Data
Microsoft and Steelcase Present Concepts For The Future Workplace
Microsoft's Outlook.com Premium Emal Service Now Available
Microsoft To Give A Face Lifting To Windows 10 With 'Project NEON'
Microsoft Edge Will Soon Get New Features
Cloud Services Boost Microsoft's Sales And Profit
Microsoft Announces Intune for Education And New Windows 10 PCs for School

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2017 - All rights reserved -
Privacy policy - Contact Us .