With crazy cross-posting, Nicholas > wrote:

: A devious sender is "spoofing" Microsoft and attempting to deceive you
: into installing a malicious VIRUS in your computer! Delete the VIRUS
: laden message immediately!

: The "proof" is Microsoft nevers sends file attachments with email messages!

: Please take a moment to read the following article:

: Information on Bogus Microsoft Security Bulletin E-mails
: http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/news/patch_hoax.asp

That is from April 03, 2003.

Following its advice won't make much difference to the September 18th
virus - since it uses an exploit that means just viewing it in
some Microsoft applications is enough to deliver its payload.
--
__________
|im |yler http://timtyler.org/

Tim Tyler wrote:

> With crazy cross-posting, Nicholas > wrote:
>
> : A devious sender is "spoofing" Microsoft and attempting to deceive you
> : into installing a malicious VIRUS in your computer! Delete the VIRUS
> : laden message immediately!
>
> : The "proof" is Microsoft nevers sends file attachments with email
> : messages!
>
> : Please take a moment to read the following article:
>
> : Information on Bogus Microsoft Security Bulletin E-mails
> :
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/news/patch_hoax.asp
>
> That is from April 03, 2003.
>
> Following its advice won't make much difference to the September 18th
> virus - since it uses an exploit that means just viewing it in
> some Microsoft applications is enough to deliver its payload.

That is true - but the vulnerability was patched 2 years ago. Read the
advisory. It does not affect IE6 at all. It is only 5.01 and 5.5 - and
only those that are unpatched. Any one getting it on patched or new
systems are morons who run the attachment manually...

Tom Shelton

Not if you have applied the patches that were issued a long
time ago.


"Tim Tyler" > wrote in message
...
| With crazy cross-posting, Nicholas
> wrote:
|
| : A devious sender is "spoofing" Microsoft and attempting
to deceive you
| : into installing a malicious VIRUS in your computer!
Delete the VIRUS
| : laden message immediately!
|
| : The "proof" is Microsoft nevers sends file attachments
with email messages!
|
| : Please take a moment to read the following article:
|
| : Information on Bogus Microsoft Security Bulletin E-mails
| :
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/news/patch_hoax.asp
|
| That is from April 03, 2003.
|
| Following its advice won't make much difference to the
September 18th
| virus - since it uses an exploit that means just viewing
it in
| some Microsoft applications is enough to deliver its
payload.
| --
| __________
| |im |yler http://timtyler.org/

How did this get through to this server????????

administrator wrote:
| MS Partner
|
| this is the latest version of security update, the
| "September 2003, Cumulative Patch" update which eliminates
| all known security vulnerabilities affecting
| MS Internet Explorer, MS Outlook and MS Outlook Express
| as well as three newly discovered vulnerabilities.
| Install now to help protect your computer
| from these vulnerabilities, the most serious of which could
| allow an attacker to run executable on your computer.
| This update includes the functionality of all previously released
| patches.
|
|
| Microsoft Product Support Services and Knowledge Base articles can be
| found on the Microsoft Technical Support web site.
| http://support.microsoft.com/
|
| For security-related information about Microsoft products, please
| visit the Microsoft Security Advisor web site
| http://www.microsoft.com/security/
|
| Thank you for using Microsoft products.
|
| Please do not reply to this message.
| It was sent from an unmonitored e-mail address and we are unable to
| respond to any replies.
|
| ----------------------------------------------
| The names of the actual companies and products mentioned herein are
| the trademarks of their respective owners.

"Frank" > wrote in message
...
> How did this get through to this server????????

It would depend on the virus scanning software you have on your server.
GFI, which is what we use, lets the message go through and strips the virus
from it then attaches a TXT message saying so to the original.