Full Disclosure mailing list archives

Re: Beware of 'IBM laptop order' email

From: Axel Pettinger <api () epost de>
Date: Tue, 01 Jun 2004 18:26:26 +0200

Skip Duckwall wrote:


Since it's a phishing email, I'm sure the exploit they're referring to 
is the one that exploits the compiled help files (.chm files), even 
though it's not exactly new... Although the way the hostile chm files 
are executed without user intervention has been patched (the MS-ITS
vulnerability in MS04-013 I believe...)

This type of phishing scam isn't really all that new and you can find 
all sorts of writeups using google.

<snip>


just my guess....


Good guess ...
http://groups.google.com/groups?threadm=1085148506.86377.0%40despina.uk.clara.net

Regards,
Axel Pettinger

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Beware of 'IBM laptop order' email m g (Jun 01)
- Re: Beware of 'IBM laptop order' email morning_wood (Jun 01)
- Re: Beware of 'IBM laptop order' email Skip Duckwall (Jun 01)
  - Running Both CISCO VPN and Symantec VPN Blake Wiedman (Jun 01)
  - Re: Beware of 'IBM laptop order' email Axel Pettinger (Jun 01)
- <Possible follow-ups>
- RE: Beware of 'IBM laptop order' email Randal, Phil (Jun 01)