republican-creole
site Search:


Home Reviews Tools Forums FAQs Find Service ISP News Maps About  
 
    All Forums Hot Topics Gallery






how-to block ads

  
Forums >

Broadband Tech > Security > Security > Update on Klez Worm!!!

Search Topic:
 Share Topic
Posting?
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
AuthorAll Replies


StepR
Code Warrior
Premium
join:2000-11-06
Elgin, IL

reply to Time Out

Previewing just as dangerous

Previewing in Outlook Express does not protect you from this worm. Klezzie exploits a vulnerability in MS Internet Explorer 5 which opens the attachment, since OE uses IE to render html. When the sender provides a false MIME type in its header, IE launches the attachment, thinking it is a different type, even when the email is not opened but just previewed.

You need to download the MS patch or to upgrade to IE 6. You should update all your AV info before even looking at email so the offending email and worm can be quarantined.

Also, as the worm goes through your address book to propogate in outgoing messages, it changes the "from" address to a randomly selected person in your address book. Thus, the "from" field in the offending message can actually be from an uninfected computer.
to forum · permalink · 2002-04-22 13:31:25 ·


TonyKlein
Premium
join:2001-07-02
Netherlands

said by StepR:
You need to download the MS patch or to upgrade to IE 6.
5.5 SP2 is OK as well: it also contains the fix for this vulnerability.

Greetz, Tony
to forum · permalink · 2002-04-22 14:03:25 ·


FiOS Dan
Premium
join:2001-07-06
Redondo Beach, CA

reply to StepR

said by StepR:
Previewing in Outlook Express does not protect you from this worm. Klezzie exploits a vulnerability in MS Internet Explorer 5 which opens the attachment, since OE uses IE to render html. ... You need to download the MS patch or to upgrade to IE 6. You should update all your AV info before even looking at email so the offending email and worm can be quarantined.
StepR I'm running a fully patched IE 5.5 SP2 and daily updated NAV. Also I could be wrong, but as I described in my post I don't think I'm previewing e-mails in OE on my PC. I think I'm using a Quick View function in a separate program to read the headers of e-mails that are still on a remote server. They have not been DL'd to my PC. Not trying to be argumentative, just seeking clarification as to my level of protection.
--
"Well, my tail feathers may droop a little, and my waddle show, but I can still out crow anything in the barn yard."
to forum · permalink · 2002-04-22 21:22:29 ·
Forums > Broadband Tech > Security > Security

Sunday, 03-Jun 11:22:30 Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo
over 12.5 years online © 1999-2012 dslreports.com.
Most commented news this week
Hot Topics