Re: maybe this should be on sec focus but.

From: Damian Gerow (no email)
Date: Fri Aug 01 2003 - 14:27:26 EDT

• Next message: Scott Granados: "Re: maybe this should be on sec focus but."
• Previous message: Drew Weaver: "maybe this should be on sec focus but."
• Maybe in reply to: Drew Weaver: "maybe this should be on sec focus but."
• Next in thread: Scott Granados: "Re: maybe this should be on sec focus but."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Thus spake Drew Weaver () [01/08/03 14:25]:
> I have had like 4 users call and tell me that they're receiving
> email from admin at ourdomainname with a unidentified attachment, possibly a
> worm that exploits the new Microsoft vulnerability last week, all 4 of these
> people reported that their updated this morning antivirus software missed
> it.

The latest NAI definitions catch it as Exploit-Codebase (which I *think* is
just a general catchall). We have an open ticket with F-Prot for this, and
are currently waiting on updated definitions from them.

  - Damian

• Next message: Scott Granados: "Re: maybe this should be on sec focus but."
• Previous message: Drew Weaver: "maybe this should be on sec focus but."
• Maybe in reply to: Drew Weaver: "maybe this should be on sec focus but."
• Next in thread: Scott Granados: "Re: maybe this should be on sec focus but."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]