Hi Thomas, On Sun, 14 Jul 2002 16:35:21 +0700, you wrote: > No, this is technically not possible. A virus is a program that needs > to be executed in order to do harm. So far, it was necessary for the > user to click on the attachment. Klez is the first virus that > auto-executes due to the "user-friendliness" of OL/OE. Nevertheless, > the malicious code is executed, and that is the very point.
Technically Klez doesn't self execute itself... it creates an iframe tag (inline frame) which forces it to open as OE/OL are more than happy running frames/iframes. When Klez generates its email that it attaches itself to, it does something like this: <iframe src="<name of attached executable>"> When OE/OL views it, it uses the attached file as the content of the iframe tag, and as it is an executable instead of an html page, it runs it. One of the many reasons I cannot stand HTML in emails. -- Jonathan Angliss ([EMAIL PROTECTED]) ________________________________________________________ Current Ver: 1.61 FAQ : http://faq.thebat.dutaint.com Unsubscribe: mailto:[EMAIL PROTECTED] Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Bug Reports: https://www.ritlabs.com/bt/
