Large Scale IM Virus Attack Feared

edited September 2004 in Science & Tech
Security researchers are seeing the first signs of a large-scale virus attack taking advantage of a known flaw in the way JPEG images are processed in Microsoft Windows products.
Just days after warning that proof-of-concept exploits were circulating, the SANS Internet Storm Center (ISC) said it had received reports that a "GDIplus.dll" exploit embedded on porn images was making the rounds on adult newsgroups. Microsoft has already released a patch to fix the way GDI libraries handle JPEG processing, and it released a scanning tool to help detect the presence of products that contain the GDI+ component and determine whether a security fix should be applied. In addition to adult images on Usenet, the ISC said it was investigating reports that the profile feature in America Online's AIM instant messaging product was being used to entice users to view malicious JPEG files.
Source: Internet News
Sign In or Register to comment.