Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

Now Instant Messages Can Spread Download.Ject Trojan

 
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Virus, Worm &Trojan Alerts
View previous topic :: View next topic  
Author Message
YUGWEN
Warrior


Joined: 17 Jun 2004
Last Visit: 23 Apr 2007
Posts: 121
Location: Oregon

PostPosted: Fri Aug 20, 2004 3:29 pm    Post subject: Now Instant Messages Can Spread Download.Ject Trojan Reply with quote

This just came in from my subscription services with WatchGuard... My question is, why don't they just SHUT TargetSearch DOWN!?!?! Mad Anyone interested in going to porn sites does NOT need fans of TargetSearch to force them there... Hope this info helps though... Have a good weekend all! Very Happy


Update:
Now Instant Messages Can
Spread Download.Ject Trojan
Severity: Medium
20 August, 2004

Summary:
The Register, an IT Web site originating in the UK, reports today that a variant of the Download.Ject attack described in our June 25 alert is currently spreading via Instant Messaging clients. The worm arrives as an instant message asking you to check out the sender's new home page. The link points back to a server hosting the attack code. When you click on the link, Windows invokes Internet Explorer (IE) to display the page. The attack exploits unpatched vulnerabilities in IE to compromise your system. The attack code points your home page to TargetSearch and displays adult content each time your browser is started.

This attack works on all current versions of Windows, including fully patched Windows XP SP1 systems with IE 6. It is not known at this time if SP2 systems are affected.

PivX, the discoverer of this new attack, has notified the major anti-virus vendors. That means you can expect updated signatures to address this threat soon.

If you have vulnerable systems, follow the steps outlined in our June 25 alert to protect yourself from this attack. Also consider blocking IM traffic.

References:
The Register's report

Our alert on the original Download.ject

More IM insecurities: Recent buffer overflow in AOL Instant Messenger

This alert was researched and written by Steve Fallin.
_________________
Absorb what is useful
Back to top
View user's profile Send private message
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Fri Aug 20, 2004 8:28 pm    Post subject: Reply with quote

thx yug!
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Virus, Worm &Trojan Alerts All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group