LSTSRV-L Archives

LISTSERV Site Administrators' Forum

LSTSRV-L
Options: Use Monospaced Font
Show Text Part by Default
Condense Mail Headers

Topic: [<< First] [< Prev] [Next >] [Last >>]

Parts/Attachments: text/plain (19 lines)
Print Reply
Content-Type:
text/plain; charset="US-ASCII"
Sender:
LISTSERV site administrators' forum <[log in to unmask]>
Subject:
Re: again a FSECURE question
From:
[log in to unmask]
Date:
Thu, 13 May 2004 09:21:59 -0400
In-Reply-To:
<[log in to unmask]>
MIME-Version:
1.0
Reply-To:
LISTSERV site administrators' forum <[log in to unmask]>
 
"LISTSERV site administrators' forum" <[log in to unmask]>
wrote on 05/13/2004 06:55:08 AM:

> excellent ! thanks
> -ulrich-
>
>
> >>From the top of my head, I think IFrame wulernabilities go out to the
net
> > to download the actual infected file without user intervention other
than
> > simply opening the message.
> >
> > Look for the text string "iframe" in the archive file and look for any
> > suspicious URLs following it.

I'm curious. Did you see the iframe tag in the log files FProtect tagged
as containing a virus?

ATOM RSS1 RSS2