Latest Version of MyDoom Exploits New IE Flaw

← Back to Stories (view on slashdot.org)

Latest Version of MyDoom Exploits New IE Flaw

Posted by michael on Tuesday November 9, 2004 @10:51AM from the zero-day-wormz dept.

techentin writes " CNN Money is reporting a new and improved MyDoom variant which is spread by a hyperlink in email. Clicking the link connects the user to an infected machine, which exploits a recently discovered buffer overflow in Internet Explorer. McAfee has a more detailed description. Is this yet another good reason for running Firefox?" CNET also has a story.

31 of 435 comments (clear)

Awww, Microsoft is so sweet by Anonymous Coward · 2004-11-09 10:52 · Score: 5, Funny

Give Firefox such a big present for their 1.0 release.
1. Re:Awww, Microsoft is so sweet by Anonymous Coward · 2004-11-09 10:56 · Score: 5, Funny
  
  I would agree with you, except it seems that IE exploits are found pretty much every day that ends in "y".
2. Re:Awww, Microsoft is so sweet by Dr+Caleb · 2004-11-09 10:58 · Score: 3, Funny
  
  Release? It wasn't 'released', it 'escaped' . . . ;)
  
  --
  "History doesn't repeat itself, but it does rhyme." Mark Twain
3. Re:Awww, Microsoft is so sweet by superpulpsicle · 2004-11-09 11:23 · Score: 3, Funny
  
  Despite what mozilla marketing said, the "PR" was the biggest reason why so many weren't ready to try it. Some people said it stood for...
  
  public-release
  
  pre-release
  
  post-ready
  
  potentially-redhot
  
  protected-by-raven
  
  pissed-on-redmond
4. Re:Awww, Microsoft is so sweet by Fortran+IV · 2004-11-09 12:13 · Score: 3, Funny
  
  Does 'Y' count as a vowel? What about 'W'?
  Y can be a vowel or a consonant. W seems to be mainly an expletive, these days.
  
  --
  I figure by 2030 or so my 6-digit UID will be something to brag about.
5. Re:Awww, Microsoft is so sweet by Airconditioning · 2004-11-09 12:38 · Score: 3, Funny
  
  So there wont be an exploit released Tomorrow? :D
6. Re:Awww, Microsoft is so sweet by cerberusss · 2004-11-09 18:29 · Score: 2, Funny
  
  Appropriate Klingon-programmer quote: "What is this talk of 'release'? Klingons do not make software 'releases'. Our software 'escapes' leaving a bloody trail of designers and quality assurance people in its wake."
  
  --
  8 of 13 people found this answer helpful. Did you?
LIES by Anonymous Coward · 2004-11-09 10:53 · Score: 3, Funny

A bug in IE? I won't believe it till I see i--
1. Re:LIES by Ploum · 2004-11-09 11:11 · Score: 2, Funny
  
  Indeed ! It's what I try to say since a few hours !
  Firefox is out.. blablabla.. don't use IE.. blabla !
  
  But IE is the best browser, and I explain why !
  
  --
  Ploum.net.
In other news... by simdude585 · 2004-11-09 10:53 · Score: 4, Funny

Microsoft today announced that it was going to leave IE users to fix their own patches...
1. Re:In other news... by Zonnald · 2004-11-09 11:00 · Score: 1, Funny
  
  Source?
  
  Or are you just trying to be fawnnee?
teach kids that IE is dangerous by t_allardyce · 2004-11-09 10:54 · Score: 5, Funny

Can they start teaching in school that using IE is like having un-protected sex with 15 donkeys? or would Microsoft complain?

--
This comment does not represent the views or opinions of the user.
1. Re:teach kids that IE is dangerous by Ayaress · 2004-11-09 10:56 · Score: 4, Funny
  
  I used a simmilar metaphor (using IE without a firewall is like having unprotected group sex blindfolded was the one I used). One person I told this two actually STOPPED using Mozilla, though, so I tend to stay away from the sex metaphors now.
Wow! by mindaktiviti · 2004-11-09 10:54 · Score: 5, Funny

People still use IE?
big deal by Anonymous Coward · 2004-11-09 10:54 · Score: 5, Funny

ok so they accidently leave one bug in their browser and everybody jumps all over them. big deal!
You Microsoft poeple are getting old... by vettemph · 2004-11-09 10:55 · Score: 1, Funny

Is this yet another good reason for running Firefox?
No, It's a good reason for switching to linux so I don't have to hear you bitch anymore.

--
The government which is strong enough to protect you from everything is strong enough to take everything from you.
Could be a trick by SlayerofGods · 2004-11-09 10:55 · Score: 5, Funny

How do we know the link to the story isn't just a trick to get us infected?

--

Technology, the cause of and solution to all of life's problems.
Good timing by Anonymous Coward · 2004-11-09 10:55 · Score: 2, Funny

A patch has just been released:

http://www.mozilla.org/products/firefox/
If only by fluxrad · 2004-11-09 10:58 · Score: 5, Funny

Man, if only there were some browser we could use instead of IE...

Oh well.

--
"It is seldom that liberty of any kind is lost all at once." -David Hume
Microsoft should be praised for IE. by Anonymous Coward · 2004-11-09 11:00 · Score: 5, Funny

A seemingly infinite number of flaws in a finite piece of code, this is quite an achievement.
Re:CNN Story by w1r3sp33d · 2004-11-09 11:00 · Score: 4, Funny

Now show him http://slackware.com/ and he shall become more powerful than you can possibly imagine.
Sorry? IE?... by Anonymous Coward · 2004-11-09 11:04 · Score: 1, Funny

Oh yes... that's that web browser that people used to use before FireFox came along isn't it...

How quaint, people are still using it...
Another reason Windows isn't ready for the desktop by coupland · 2004-11-09 11:06 · Score: 5, Funny

I've been running Linux on my main desktop for years, and recently I've really been considering switching to Windows. After all, it's got some cool apps, and while I wouldn't call it "feature complete", I say they've done a good job of implementing many of the best features of Linux and OSX. However it's articles like this that convince me it's still a bit early to switch to Windows.

All told they've made some real inroads in servers, and the desktop experience is improving with each release (the current unstable branch -- AKA "XP" -- has implemented the theme concept long popular in KDE and Gnome!) however I think it's still premature to declare Windows ready for prime time on the desktop.
Re:CNN Story by mind21_98 · 2004-11-09 11:06 · Score: 2, Funny

It's not the most popular browser till mozilla.org gets Slashdotted! :)

--
US businesses that currently accept chip and PIN/signature
Will microsoft release a knowledge base article by xutopia · 2004-11-09 11:12 · Score: 4, Funny

telling us to stop clicking on hyperlinks?
Re:Better the losing side. by lateralus_1024 · 2004-11-09 11:26 · Score: 2, Funny

Which is pretty pointless because barrels are usually wooden, and bullets go right thru them.

--
If you think /. comments are bad, check out Digg.
Re:Software without security issues: by trentblase · 2004-11-09 11:30 · Score: 2, Funny

The compiler automagically builds in the vulnerability. They all do that nowadays.
What? by imemyself · 2004-11-09 12:00 · Score: 2, Funny

An exploit affecting IE?! That's something you don't hear everyday.

Oh, wait...

--
Every time you post an article on Slashdot, I kill a server. Think of the servers!
BPS by tepples · 2004-11-09 12:59 · Score: 2, Funny

No software is bulletproof.

You've never played Hatris for NES, Pipe Dream for NES, Faceball 2000 for Game Boy or Super NES, or Yoshi's Cookie for Super NES. All were published by a Japanese company called BPS, for Bullet Proof Software.
what does a nonexecutable flag fix for 1000 alex? by sholde4 · 2004-11-09 13:45 · Score: 2, Funny

need i say more?
Re:[Oblig] Trek? by Neoncow · 2004-11-09 15:08 · Score: 2, Funny

We are the Borg. Lower your trust levels and apply our patches. We will add your financial and technological distinctiveness to our own. Your culture will adapt to service us.