• Welcome to Overclockers Forums! Join us to reply in threads, receive reduced ads, and to customize your site experience!

[NEWS] New Trojan Threatens Windows XP SP 2

Overclockers is supported by our readers. When you click a link to make a purchase, we may earn a commission. Learn More.

Mr.Guvernment

Member
Joined
Feb 26, 2003
Slashdot

What else is new..


+--------------------------------------------------------------------+
| New Trojan Threatens Windows XP SP 2 |
| from the unplug-your-computer-for-protection dept. |
| posted by michael on Friday December 31, @08:50 (Windows) |
| http://it.slashdot.org/article.pl?sid=04/12/31/1323218 |
+--------------------------------------------------------------------+

lightdarkness writes "Symantec is reporting about a [0]new virus called
Phel (Anagram of 'help') which is a Trojan which spreads via a HTML file.
All the user needs to do is go to the page, and it [1]takes advantage of
the vulnerability in the IE Help control component files. This allows the
attacker to download malicious programs on to the machine. Worst part is,
this is one of the exploits that even effects SP2. Microsoft is said to
be working to stop the spread, and to release a patch." The exploit is
apparently [2]not the same as the help file problems disclosed last week.

Discuss this story at:
http://it.slashdot.org/comments.pl?sid=04/12/31/1323218

Links:
0. http://securityresponse.symantec.com/avcenter/venc/data/trojan.phel.a.html
1. http://www.computerworld.com/securitytopics/security/holes/story/0,10801,98636,00.html
2. http://it.slashdot.org/article.pl?sid=04/12/25/1433236&tid=172
 
Not? it affects SP1 to, they said it even meaning that less viruses effect SP2 then one SP1, so really that puts SP2 up. Any way dosnt matter much this is always happening I dont use IE and I have panda firewall so i should be fine.
 
The article said the trojan exploits a vulnerability in Internet Explorer, what if I am using Mozilla Firefox to surf the web?
 
Anyone see that report that M$ has to release a stripped-down version of Windows without IE and WMP AND give a part of windows' source code to the European gov't. So I'm expecting another wave of viruses once some of the source code is examined.
 
you essentially can not fully %100 "remove" IE as it is the explore.exe shell windows uses - that is how intergrated IE is into windows - the only removale you can do is remove the .exe file from your desktop and the c:\program files..... etc.


This will only affect people who go to a web site and are using IE.
 
Slackfumasta said:
Firefox baby!

I figure we have another year before there are a crapload of Firefox viruses and exploits out there.


exactly what i use - i also try to run away people who use IE add-ons like Avant, they do nothing!

i think Mozilla how has about %10 of the browser market from last reports.
 
depends if outlook uses the IE help control thingie (which is _not_ IE but an external program/plugin even if it's only a DLL and on by default). After the many epidemics caused by outlook, they might have disabled it and only allowing few things like straight html and jscript or somesuch in outlook.
 
ps2cho said:
i removed Internet Explorer....lol
Firefox all the way
You did that without facing any problems??
Does an automated windows update work anymore?

Another reason to switch to Linux :)

N00b Q:
Is Mozilla/FF open source??
 
Back