[Full-disclosure] test this
brudy at bruderer-research.com
Wed Dec 28 17:17:59 GMT 2005
Using a previous unknown hole in windows, an exploit was discovered
which infects a PC with spyware and trojans. The PC is infected using a
manipulated picture in the WMF format.
Only Symantec found a trojan downloader. Another AV scanners found the
downloaded code, but did not recognize the actual downloader.
(http://www.heise.de/security/news/meldung/67794 for the german
My scanners (McAfee, Kaspersky, Clam) did not find anything.
On Wed, 2005-12-28 at 08:39 -0800, D B wrote:
> could the uber geeks who do spyware check the
> attachment for me ??
> do not click this URL if in windows ... possible
> it is obtained from
> GF has countless popups after visiting this site and
> scanning with several different scanners isnt finding
> the source
Bruderer Research GmbH
phone +41 52 620 26 53
peter.bruderer at brg.ch
Full-Disclosure is hosted and sponsored by Secunia.