Slashdot Mirror

← Back to Stories (view on slashdot.org)

First JPEG Virus Posted To Usenet

Posted by timothy on from the one-neck-to-wring dept.

Shawn writes "This could possibly be the worst viruses yet! Earlier this month Microsoft announced a problem in their GDI driver that processes the way JPEG images are displayed. Someone has finally posted an exploit to Usenet. Easynews, a premium Usenet provider, found the virus Sunday afternoon. Up-to-date information about how we found it and what it does is located at www.easynews.com/virus.txt. When this picture is viewed it installs remote management software (winvnc and radmin) and will connect to irc."

4 of 694 comments (clear)

  1. Re:Anyone have a working copy? by josh3736 · · Score: 0, Redundant
    From TFA...

    The isolated file is here (BE CAREFUL - DON'T SUE ME FOR DAMAGE, I'LL COUNTER-SUE!):

    http://easynews.com/virus/virus-jpeg.zip

    md5: b7e7a5703a722558b6a170be5c43b90d
    crc32:a3e0f71e
    size: 4098 bytes

    Linky... be careful with that!

  2. SP2 Firewall by acherrington · · Score: 0, Redundant

    Further proof that secure computing is not a firewall enabled by default. Secure computing is a well rounded aproach. Design, code, implementation, and patching. And thats just the OS part, not the people part.

    --


    Victory is gained, not in knowing your opponents next move, but in preempting them.
  3. Re:Anyone have a working copy? by mbaciarello · · Score: 0, Redundant

    Is IE affected by the exploit, as well?

    And if so, would Norton or other antivirus software catch the bad code in time?

    I guess that's one of the main points...

  4. keeping a campus virus-free -- Don't allow Windows by olddotter · · Score: 1, Redundant

    Just don't allow Windows boxes on the network. Problem solved....

    --
    Think Deeply. ...