Welcome to TheBUGS - Security related portal. Search crack, serial number, keygen, patch, activation unlock code  - Worm wriggles through unpatched Yahoo flaw
Press CTRL-D to bookmark us
Cracks, serial number, activation, unlock code, nocd
Welcome GuestLogin / Register / Members
Merge or split your pdf files ONLINE and FREE
Bookmark us | Set As Homepage | Advertising | Feedback | Recomend us | Link us | Your comments | Gallery | Terms
Security News | Security Library | Forums | Top Sites | Direct Downloads | Cracks / SN | Links | Books |
  -
 Network
 Top sites
 Direct Download Links
 Password Generator
 Cheats
 HackZone.RU - HACK & CRACK & ВЗЛОМ

 
 Forums
 Best Sites

 Full list
 Your site here
 
 Sponsor
 Partners

CrackSpider.NET

CrackTeam.ws

KeyGen.us



Manuals.ws

Mobile-Review.ws

Your link here
 


You are welcome to post comments and suggestions

Copyright 2001-2008 by Freeman
Search in

> TOP10 SECURITY SITES <
Your site here
Your site here
Your site here
Your site here
Your site here
Your site here
Your site here
Your site here
Your site here
Your site here
>> Your site here <<

Top Submit newsSubscribe
Access Control // Auditing // Communication // Computer Crime // Confidentiality // Cryptography // Digital Imaging // Exploit // Gadgets // Hack // Hardware // Incidents // Internet // Intrusion Detection // Linux // Malicious Code // Microsoft Windows // Mobile // Other // PDA // Phreaking // Privacy // Software Updates // Virus // Vulnerability //


Previous articleBack to news listNext article
 
 Sponsored links

Want to become one of our authors and see your work published on TheBUGS ?
 
 Worm wriggles through unpatched Yahoo flaw
Categorie: Virus
Posted: 2006-06-13 by DiMan
Views: 2926
Source: Click here
 
Current Rating: Not rated
Poor Best
 Details

A new worm that targets Yahoo e-mail users is on the loose, taking advantage of an unpatched JavaScript flaw, a security company has warned.

The Yamanner worm targets all versions of Yahoo Web-based mail except the latest beta version, Symantec said in an advisory released Monday.

Yahoo is working on a patch for the vulnerability, and people are encouraged to update the antivirus definitions on their PCs, Symantec said. Yahoo could not be immediately reached for comment.

Yamanner arrives in a Yahoo mailbox bearing the subject header "New Graphic Site." Once the message is opened, the computer becomes infected and the worm spreads itself to people on the Yahoo e-mail contact list. The harvested e-mail addresses are also sent to a remote online server, which Symantec suspects may use the information for spam campaigns.

"The worm is taking a pretty novel approach," said Dean Turner, senior manager of Symantec Security Response. "It takes advantage of a JavaScript vulnerability, so the user doesn't even have to click on an attachment to get infected."

Yamanner exploits the Yahoo flaw by enabling the scripts that are embedded in HTML e-mails to be run by the user's Web browser.

The worm, which was spotted in the wild early this morning, has hit the remote server more than 100,000 times, forwarding Yahoo e-mail addresses harvested from unsuspecting users, Turner said.

Although the worm is spreading quickly, and no patch has been issued, Symantec is rating the threat a "2." The security vendor uses a 1-to-5 rating system, with "5" as its most severe category.

"Antivirus definitions have been released for it, and Yahoo is working on a patch, so we don't want to cry wolf," Turner said. "Although there is the potential the worm will affect a larger number of people, for now to raise it to another (higher) level would be inappropriate."

He added it is premature to predict whether this worm will morph into other forms and attack other browser-based forms of e-mail, such as Google's Gmail.

Systems affected include Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003 and Windows XP, according to Symantec's advisory

 


 
 Links
Spyware removal tools

 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://www.thebugs.ws/news/trackback.php?id=1654

User comments (post your comments here)

Only registerd members can post comments and articles
 

Previous articleBack to news listNext article
 

 Last security news  Last forum messages
  • Bluesoleil (general bluetooth) drivers update 2.3.060728...
  • Blu-ray, HD DVD DRM busted...
  • FBI database hacked...
  • Phishing by phone...
  • Microsoft France site cracked...
  • Social networks poised to shape Net's future...
  • Windows Vista Beta 2 Available for Public Download...
  • Hacker Steals Energy Department Employee Data...
  • PQI Introduces 64GB NAND Flash 2.5" Disks...
  • MSIE (mshtml.dll) OBJECT tag vulnerability...

    More news... Submit news RSS
  • Cracks and Serials / Re: TurboTax for Canadians 2016
  • Cracks and Serials / Re: TurboTax for Canadians 2016
  • Cracks and Serials / Re: Ufile / ImpotExpert 2016
  • Cracks and Serials / Re: Ufile / ImpotExpert 2016
  • Cracks and Serials / Re: Ufile / ImpotExpert 2016
  • Cracks and Serials / Re: TurboTax for Canadians 2016
  • Cracks and Serials / Re: * Cast-soft Wysiwyg R37 cracked *
  • Cracks and Serials / Re: TurboTax for Canadians 2016
  • Cracks and Serials / Re: Ufile / ImpotExpert 2016
  • Cracks and Serials / Re: * Cast-soft Wysiwyg R37 cracked *

    Go to forums... RSS



  • Ya-Cyt SpyLOG - Спайлог Page Rank Checker