12-29-2005, 04:02 PM
Quote:Hackers have created a range of Trojan programs which exploit a dangerous new Windows Meta File vulnerability. The vulnerability is rated critical, and so far, no patch has been issued....
The WMF vulnerability exists in computers running Microsoft Windows XP with SP1 and SP2, and Microsoft Windows Server 2003 and stems from a flaw in a utility used to view picture and fax files.
full article: http://www.theregister.co.uk/2005/12/29/...jan_alert/
Quote:The vulnerability functions in Internet Explorer, and may function in Firefox if certain conditions are met.
The programs detected by Kaspersky Lab which exploit this vulnerability are Trojan-Downloaders, which install other Trojan programs on the victim machine. At the moment, Trojan programs are being downloaded from unionseek.com and iframeurl.biz. New modifications of these programs may appear.
full security advisory: http://www.viruslist.com/en/alerts?alertid=176701669