Full Disclosure mailing list archives

IE exploit runs code from graphics?

From: "Larry Seltzer" <larry () larryseltzer com>
Date: Thu, 24 Jun 2004 19:02:01 -0400

From http://www.eweek.com/article2/0,,1617045,00.asp:


"Analysts at NetSec Inc., a managed security services provider, began seeing indications
of the compromises early Thursday morning and have since seen a large number of
identical attacks on their customers' networks. The attack uses a novel vector: embedded
code hidden in graphics on Web pages... NetSec officials said the attack seems to
exploit a vulnerability in Internet Explorer."

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

SV: New malware to infect IIS and from there jump to clients, (continued)
- - - SV: New malware to infect IIS and from there jump to clients Peter Kruse (Jun 24)
    - Re: SV: New malware to infect IIS and from there jump to clients Duncan Hill (Jun 25)
    - Re: SV: New malware to infect IIS and from there jump to clients Nasir Ghaznavi (Jun 25)
    - Re: New malware to infect IIS and from there jump to clients Gary Flynn (Jun 25)
    - RE: New malware to infect IIS and from there jump to clients joe (Jun 25)
    - Re: New malware to infect IIS and from there jump to clients insecure (Jun 25)
    - Re: New malware to infect IIS and from there jump to clients Matt Power (Jun 27)
    - Re: Evidence of a ISC being hacked? VX Dude (Jun 24)
    - Re: Evidence of a ISC being hacked? Valdis . Kletnieks (Jun 25)
  - Re: Evidence of a ISC being hacked? Pavel Kankovsky (Jun 24)
    - IE exploit runs code from graphics? Larry Seltzer (Jun 24)
    - RE: IE exploit runs code from graphics? Heather M. Guse Bryan (Jun 24)
    - Re: IE exploit runs code from graphics? Nick FitzGerald (Jun 24)
    - RE: IE exploit runs code from graphics? Larry Seltzer (Jun 24)
    - Re: IE exploit runs code from graphics? Aditya, ALD [ Aditya Lalit Deshmukh ] (Jun 26)
    - Re: IE exploit runs code from graphics? Jimmy Mitchener (Jun 26)
    - Re: IE exploit runs code from graphics? st3ng4h (Jun 26)
    - Re: IE exploit runs code from graphics? Valdis . Kletnieks (Jun 28)
    - Re: IE exploit runs code from graphics? Steve Kudlak (Jun 27)
    - Re: IE exploit runs code from graphics? Pavel Kankovsky (Jun 27)