[Full-Disclosure] IEpatch.exe?

Jürgen R. Plasser plasser at hexagon.at
Fri Oct 31 11:03:53 GMT 2003 

Has anyone seen this Email before:

From: Microsoft Corp. <support at microsoft.com>
Subject: [Users] You must patch your Internet Explorer.

Text:

> Microsoft official patch for IE, AntiBlasterWorm 1.1
>
> Microsoft released a security patch on 20.10.2003 designed
> to fix two security vulnerabilities in all versions of its
> Internet Explorer web browser.
>
> The worm, W32.Blaster.Worm and its variants infects your
> computer through security holes in Microsoft web browser,
> Internet Explorer.This worm also has the potential to exploit
> a similar issue that is addressed by Microsoft Security
> Bulletin MS03-039. These issues concern a vulnerability in the
> Remote Procedure Call (RPC) function.
>
> So, we ask you that you patched your version of Internet Explorer.
> You must patch your version of Internet Explorer,otherwise,
> virus can infect your computer at days.
>
> Your patch-program was attached to this letter.
>
> 1. Personal Information
>    ------------------------------
>
> -------------------------------------------------------------------------
> ---        *** Your KEY: HFKFLW63JKGFF348FLD0467D ***
>
> -------------------------------------------------------------------------
> ---
> If you have any questions, please read a file (README.TXT).
>
> 2. Technical support
>    ---------------------------
>
>   For technical support questions, please go to
>   http://www.microsoft.com
>
>
>             --------------------------------------------------
>                Thank you for using Microsoft!
>             --------------------------------------------------

Attachment: IEpatch.exe, README.txt

The README.txt contains:


> Microsoft Internet Explorer official patch AntiBlasterWorm 1.1
> ==================
> Version: 1.1
>
> (c) Copyright Microsoft, Inc. All Rights Reserved.
>
>
>     1. Personal Information
>        -----------------------------------
>        Your KEY:  HFKFLW63JKGFF348FLD0467D
>        -----------------------------------
>
> Table of Contents
> -----------------
>
>   2. Installation instructions
>   3. Technical support
>
>
> Installation instructions
> -------------------------
>
>   To install AntiBlasterWorm 1.1, you should follow the following simple
> steps:
>
>   1. Run the installer program by double-clicking on the
>      IEpatch.exe icon.
>   3. Follow the instructions of the installer program to install the
>      AntiBlasterWorm 1.1.
>   4. Done! The Internet Explorer should be patched.
>
>
> Technical support
> -----------------
>
>   For technical support questions, please go to
>   http://www.microsoft.com

-- 
Jürgen

Full-Disclosure is hosted and sponsored by Secunia.