Full Disclosure mailing list archives

Re: one new trojan

From: "Abilash Praveen M" <praveen () blitzwebsolutions com>
Date: Mon, 26 Jul 2004 09:23:46 +0530

how does this work? the starter script doesnt seem to do a thing in me? XP
SP1 IE6.0 SP1

~ praveen
----- Original Message ----- 
From: "Ben Lambrey" <ben.lambrey () pandora be>
To: <full-disclosure () lists netsys com>
Sent: Sunday, July 25, 2004 1:04 AM
Subject: Re: [Full-disclosure] one new trojan

On Saturday July 24 2004 20:55, Willem Koenings wrote:

hi,

NAV does recognise it as Trojan.ByteVerify.


do you talk about those java components or about web.exe?
those java components are indeed recognized, as byteverify
vulnerability is old enough and in this context java is
used only as privilege escalation and execution of the
included web.exe. but web.exe is something new...


only the java components, the .exe is not recognised.


-- 
ben.lambrey () pandora be  (ON1ALD)




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

one new trojan Willem Koenings (Jul 24)
- Re: one new trojan Filbert (Jul 24)
- RE: one new trojan Jelmer (Jul 24)
- <Possible follow-ups>
- re: one new trojan Willem Koenings (Jul 24)
  - Re: one new trojan Filbert (Jul 24)
  - Re: one new trojan Ben Lambrey (Jul 25)
    - Re: one new trojan Abilash Praveen M (Jul 27)