Untitled Document
www.expresscomputeronline.com WEEKLY INSIGHT FOR TECHNOLOGY PROFESSIONALS
21 February 2005  
Untitled Document
Sections

Market
Management
Technology
Technology Life

Columns

Between The Bytes

Services
Subscribe/Renew
Archives
Search
Contact Us
Network Sites
Network Magazine India
Exp. Hotelier & Caterer
Exp. Travel & Tourism
feBusiness Traveller
Exp. Pharma Pulse
Exp. Healthcare Mgmt.
Exp. Textile
Group Sites
ExpressIndia
Indian Express
Financial Express
Home - Technology - Article

Update

A compilation of the latest information about Virus, Security and Patches which could be vital for your system

Sun Solaris vulnerability

A vulnerability has been reported in Sun Solaris that can be exploited by local users to cause denial-of-service attacks. Sun has released patches for Solaris 8 and Solaris 9, which can be downloaded from sunsolve.sun.com/search/d...y=urn:cds:docid:1-21-117350-16-1 (For Solaris 8)

sunsolve.sun.com/search/d...y=urn:cds:docid:1-21-117171-15-1 (For Solaris 9)

Instant messaging worm

W32/Bropia-C is an instant messaging worm that monitors the status of MSN Messenger and sends a copy of itself to all MSN messenger contacts on an infected system. It prevents the Windows Task Manager (taskmgr.exe) and Command Prompt (cmd.exe) from being run. Most security vendors have released patches for this worm.

Vulnerabilities reported in Eudora

Security firm, Next Generation Security Software has warned of multiple risk vulnerabilities in the Windows version of Eudora, a popular alternative to Outlook Express. The flaws permit the execution of code via a specially crafted e-mail and they affect versions Eudora 6.2.0 and below. However, Eudora 6.2.1 is safe.

It’s a Saddam virus now

The Bobax-H virus is the latest in the category of worms that attempt to arouse the curiosity of users by using attractive news items as bait. The virus tempts users by claiming to attach photos that show the Saddam Hussein killed in an escape attempt. The subject of the message is ‘Saddam Hussein – Attempted Escape – Shot Dead’. The attachments contain the virus code and these can have PIF, EXE, ZIP or SCR extensions. Once a machine is infected, the virus attempts to forward itself to other mailboxes while attempting to disable anti-virus and other security software. The virus even installs an e-mail relay module, which can be used by hackers to send spam. It takes advantage of the LSASS vulnerability reported by Microsoft last year that was exploited by the Sasser Worm. The LSASS vulnerability is a buffer overrun that allows remote code execution and helps a hacker control an affected system.

Apple Mac OS X vulnerability

A vulnerability in the mail application supplied with Apple’s Mac OS X operating system inserts the Media Access Control (MAC) address of a network interface card in the sender’s PC into the Message-ID header of every e-mail message sent through it. This lets hackers figure out the identity of the system from which a message was sent. Apple has advised all its users to apply the patch available at

docs.info.apple.com/article.html?artnum=300770

Malware - Top 10

1. WORM_NETSKY.P
2. HTML_NETSKY.P
3. JAVA_BYTEVER.A
4. WORM_NETSKY.D
5. SPYW_GATOR.D
6. WORM_NETSKY.B
7. WORM_NETSKY.C
8. DOS_AGOBOT.GEN
9. SPYW_GATOR.C
10. TROJ_ISTBAR.GM

Source : Trend Micro
(from January 21 to February 4, 2005)

 


Untitled Document

UNSUBSCRIBE HERE
Untitled Document
© Copyright 2001: Indian Express Newspapers (Bombay) Limited (Mumbai, India). All rights reserved throughout the world. This entire site is compiled in Mumbai by the Business Publications Division (BPD) of the Indian Express Newspapers (Bombay) Limited. Site managed by BPD.