i posted about ANI vulnerability malware some days ago and today i saw a paper on websense security labs about analysis of malware spread via spam and ANI vuln.
view this paper on websense
Archive for April, 2007
Analysis of Malware Spread via SPAM and ANI vulnerability
April 9, 2007Perl Underground 4
April 9, 2007Perl Underground talk about exploiters perl codes. in this ezine they focused on bad perl codes.
this is really nice .
Read this ezine on milw0rm.com
New worm use the .ani zero day vulnerability
April 2, 2007Some days ago researchers declared an alert for Microsoft Windows Cursor and Icon(.ANI) zero day vulnerability . now they declared an alert for a new worm .
“It’s a bad news that the Windows Animated Cursor Handling zero-day vulnerability has been used by malwares in China now. We have received this kind of new worm today. It has the same behavior as Worm.Win32.Fujacks. It also can infects .HTML .ASPX .HTM .PHP .JSP .ASP and .EXE files, and inserts the malicious links which contained Windows Animated Cursor Handling zero-day vulnerability into .HTML .ASPX .HTM .PHP .JSP .ASP files. It also can send out Chinese spams which are include the same zero-day vulnerability link. “
view analysis on CISRT
http://www.cisrt.org/enblog/read.php?68
