PS:
All your Antigen are belong to us.
-----Original Message-----
From: Sybari Updates [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 28, 2001 1:11 PM
To: [EMAIL PROTECTED]
Subject: VBS/Loding (Java Script embedding in web page) - LOW RISK
Dear Antigen Customer,
We have received several inquiries on a website containing Java Script that will email a link (no infection) to users in the Microsoft Outlook Address Book. The message generated by the website is as follows:
------------------------------------------------------------
Subject: Hi !
Hi, how are you ? I am fine here. Please read the page
http://pcControl.tripod.com/ to get some knowledge and prevent somebody hack
you. Forword this mail to help all your friends too.
------------------------------------------------------------
Please note the email DOES NOT contain any attachments only the body above and the link back to the website for users that get the email.
This type of mass mailer can only be executed by visiting the website.
No attachment can be detected in the mass mailer. Thus the only way it can be generated is by the executing the java script on the above webpage.
Microsoft had identified this vulnerability and has supplied a patch in the link below:
http://support.microsoft.com/support/kb/articles/Q275/6/09.ASP
Sybari Software, will continue to monitor this low risk and keep you up to date on any changes.
Thank You
Sybari Software, Inc.
List Charter and FAQ at:http://www.sunbelt-software.com/exchange_list_charter.htm
