Fake RedHat - Fedora Security Patch / Trojan Source Code & Analysis

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Fake RedHat - Fedora Security Patch / Trojan Source Code & Analysis
From: K-OTiK Security <Special-Alerts@xxxxxxxxxx>
Date: 25 Oct 2004 19:06:37 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm


Emails that pretend to come from the Red Hat Security Team are circulating in 
the wild. These emails tell users to download and install malicious updates. 
These trojan updates contain malicious code designed to compromise the systems 
they are run on. 

Code and Analysis :
http://www.k-otik.com/news/FakeRedhatPatchAnalysis.txt

Regards.
K-OTik Security Research & Survey Team 24/7
http://www.k-otik.com
http://www.adconsulting.fr

Prev by Date: Re: [Full-Disclosure] Update: Web browsers - a mini-farce (MSIE gives in)
Next by Date: Bug in hotmail
Previous by thread: Re: Mozilla Firefox (tested on 0.9.3) html-code crash.
Next by thread: Bug in hotmail
Index(es):
- Date
- Thread