Updates

A compilation of the latest information about viruses and worms, security issues and patches to rectify the same.

Microsoft DDS Library vulnerability reported

A vulnerability has been reported in the Internet Explorer, which can be exploited to compromise a vulnerable system. The vulnerability is caused due to an error when the ‘msdds.dll’(Microsoft DDS Library Shape Control) COM object is instantiated in the Internet Explorer browser. Successful exploitation allows execution of arbitrary code, but requires that a user is tricked into visiting a malicious Web site. Vulnerable versions include Microsoft Visual Studio 2002, Microsoft Access 2002 and Office XP. Non-vulnerable versions include Office XP SP3 or Access 2002 SP3.

Trend Micro reports PE_BOBAX

Trend Micro has reported a malware that is a memory-resident, file-infector and usually arrives as an e-mail attachment. It infects all executable (.EXE) files running on a compromised machine by appending its code on a target file. It does not have an infection marker; thus, it can reinfect files upon startup. It uses its own in-built Simple Mail Transfer Protocol (SMTP) engine, enabling it to send messages on its own. This means that users are often unaware that their computers are sending out e-mail messages containing this virus.

This file-infector is capable of opening random ports. It emulates an SMTP server, and listens for incoming connections. E-mail messages may then be sent using the affected system as a mail server. An infected machine may be used as a mail server to send out e-mail messages in bulk.

Further, it also modifies an affected system’s ‘Hosts’ file. It appends a list of Web sites, most of that are security-related, to the said file. instead redirected to the local machine. It affects Windows 98, ME, NT, 2000, XP, Server 2003 versions.