Results 1 to 11 of 11

Thread: First JPEG Virus Posted To Usenet

  1. #1
    Precision Processor Super Moderator egghead's Avatar
    Join Date
    May 2002
    Location
    In Your Monitor
    Posts
    3,546

    First JPEG Virus Posted To Usenet

    Posted by timothy on Monday September 27, @10:12PM
    from the one-neck-to-wring dept.
    Shawn writes "This could possibly be the worst viruses yet! Earlier this month Microsoft announced a problem in their GDI driver that processes the way JPEG images are displayed. Someone has finally posted an exploit to Usenet. Easynews, a premium Usenet provider, found the virus Sunday afternoon. Up-to-date information about how we found it and what it does is located at www.easynews.com/virus.txt. When this picture is viewed it installs remote management software (winvnc and radmin) and will connect to irc."

    source:http://slashdot.org/article.pl?sid=04/09/27/2319222


    everyone should read what easynews has found..
    this is scary and the exploit works if you change file to .bmp, .ping, .tiff, .gif etc....

    egghead
    Last edited by egghead; September 28th, 2004 at 05:39 AM.
    ------------------------------------------------------------



  2. #2
    Triple Platinum Member
    Join Date
    Aug 2004
    Posts
    883
    i have avg 7.0 will it protect me from the virus?

  3. #3
    Precision Processor Super Moderator egghead's Avatar
    Join Date
    May 2002
    Location
    In Your Monitor
    Posts
    3,546
    this is not a virus but an exploit.

    I do not know if avg will alert you to it but this needs to be fixed by microsoft

    update you xp now

    many keyloggers and commercial spy programs or monitoring programs work off exploits to the os and as a result you are never alerted/cannot be detected by antivirus companies and you are monitored or hacked silently .

    more info here,
    http://www.theinquirer.net/?article=18656
    Last edited by egghead; September 28th, 2004 at 06:30 AM.
    ------------------------------------------------------------



  4. #4
    Triple Platinum Member
    Join Date
    Aug 2004
    Posts
    883
    ok...thanks

  5. #5
    Junior Member
    Join Date
    Sep 2004
    Posts
    2

    Angry hacktheworst

    Dude rohit why ur giving name of ur ****ing web.....?

  6. #6
    Triple Platinum Member
    Join Date
    Aug 2004
    Posts
    883
    sorry?
    i was unable to get you...are u saying that it's exploitable because of it being mentioned in that manner?...
    Last edited by rohitk89; September 29th, 2004 at 04:47 AM.

  7. #7
    Techzonez Governor Super Moderator Conan's Avatar
    Join Date
    Apr 2002
    Location
    Philippines
    Posts
    4,343
    Quote Originally Posted by ankit
    Dude rohit why ur giving name of ur ****ing web.....?
    Please address other members in a proper manner or face my WRATH!

  8. #8
    Triple Platinum Member
    Join Date
    Aug 2004
    Posts
    883
    Quote Originally Posted by Conan
    Please address other members in a proper manner or face my WRATH!
    my hero! (really, i did get kinda pissed)

  9. #9
    Old and Cranky Super Moderator rik's Avatar
    Join Date
    Aug 2003
    Location
    Watching Your every move...
    Posts
    4,688
    That is a scary read...Thanks egghead

  10. #10
    Friendly Neighborhood Super Moderator phishhead's Avatar
    Join Date
    Apr 2002
    Location
    San Diego, Ca.
    Posts
    3,732
    Quote Originally Posted by rohitkumar
    my hero! (really, i did get kinda pissed)
    and thats why conan took care of it...flaming is not tolerated here...and will be delt with accordingly.



  11. #11
    Titanium Member
    Join Date
    Jul 2002
    Location
    blk helo target, WA
    Posts
    3,536
    http://www.virustotal.com/flash/index_en.html

    BitDefender 7 09.28.2004 -
    ClamWin devel-20040822 09.28.2004 -
    F-Prot 3.15a 09.28.2004 -
    Kaspersky 4.0.2.24 09.28.2004 Exploit.IE.Crashsos
    McAfee 4395 09.28.2004 -
    NOD32v2 1.88 09.28.2004 Exploit.IE.Crashsos
    Norman 5.70.10 09.28.2004 -
    Panda 7.02.00 09.28.2004 -
    Sybari 7.5.1314 09.28.2004 -
    Symantec 8 09.27.2004 -
    TrendMicro 7.1 09.26.2004 -
    Last edited by lynchknot; September 29th, 2004 at 15:14 PM.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •