From owner-freebsd-questions@FreeBSD.ORG Mon Mar 22 15:11:43 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2B1E416A4CE for ; Mon, 22 Mar 2004 15:11:43 -0800 (PST) Received: from om-trendmicro.rgc3.net (om-trendmicro.rgc3.net [66.35.244.203]) by mx1.FreeBSD.org (Postfix) with ESMTP id EC84543D2F for ; Mon, 22 Mar 2004 15:11:42 -0800 (PST) (envelope-from newsletters@trendmicro.rsc03.com) Received: by om-trendmicro.rgc3.net id hbtpau04fhcs; ) MIME-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: quoted-printable Date: Mon, 22 Mar 2004 15:11:41 -0800 From: "Trend Micro Newsletters Editor" X-cid: tne.257.1 To: freebsd-questions@freebsd.org Message-Id: <20040322231142.EC84543D2F@mx1.FreeBSD.org> Subject: Trend Micro Medium Risk Virus Alert - WORM_NETSKY.P X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Trend Micro Newsletters Editor List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Mar 2004 23:11:43 -0000 Dear Trend Micro customer: As of March 22, 2004 7:05 AM PST, TrendLabs has declared a Yellow Alert to= control the spread of WORM_NETSKY=2EP=2E=20 TrendLabs has received numerous infection reports of this malware spreading= in the US and Europe=2E =20 This new NETSKY variant propagates via email using its own Simple Mail Tran= sfer Protocol (SMTP) engine=2E=20 The email that it sends out has varying subjects, message bodies, and attac= hment file names=2E It gathers email addresses from files with certain exte= nsion names=2E=20 It also has the ability to propagate via network shares by dropping copies = of itself to shared folders of the affected system=2E=20 It exploits a known vulnerability in the Internet Explorer involving the in= correct MIME header vulnerability (MS01-020) to execute the malware when th= e email is read=2E More information on this vulnerability is available at:= =20 http://www=2Emicrosoft=2Ecom/technet/security/bulletin/MS01-020=2E= mspx=20 TrendLabs has released the following EPS deliverables:=20 TMCM Outbreak Prevention Policy 99 (ATA: 7:34 AM PST) Official Pattern Release 832 (ATA: 7:22 AM PST) Damage Cleanup Template 296 (ETA 1 hour 45 minutes) ______________________________________________________________________ This message was sent by Trend Micro's Newsletters Editor using Responsys I= nteract (TM)=2E If you prefer not to receive future e-mail from Trend Micro's Newsletters E= ditor: =20 http://trendnewsletter=2Ersc03=2Enet/servlet/website/PersonalizedForm?mgLEw= kLMLkLgJL9LgmLk=2E40hktELtHpsEMkLLIlK-jNLlmphglFMkLLIlKDhknEhE=2E3dLgLkpJ8s= Hlm_zNIlJkpILkl To view our permission marketing policy: http://www=2Ersvp0=2Enet