Network Security: Detailed info on Fw: [Full-Disclosure] Joke.cpl ???

Subject:	Fw: [Full-Disclosure] Joke.cpl ???
Date:	Fri, 29 Oct 2004 14:14:48 +0200

So far we have Bagle AQ, AT, AU, AY and BB for the same worm
More proposals?

This is the biggest divergence i've seen the last months. Is there any
reason, why the vendors could not agree on one name? We already have
CVE-entries and Bugtraq-IDs for vulnerabilities.

Why not build up a similar database, e.g. hosted at EICAR, where the vendors
will enter there finding and give it a name. First come, first served.

Daniel Bachfeld
heise Security


----- Original Message ----- 
From: "Daniel Bachfeld" <dab@heise.de>
To: <Full-Disclosure@lists.netsys.com>
Sent: Friday, October 29, 2004 12:48 PM
Subject: Re: [Full-Disclosure] Joke.cpl ???


Bagle.bb for nai http://vil.mcafeesecurity.com/vil/content/v_129509.htm

and Bagle.at for TM

http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_BAGLE.AT


dab
heisec

----- Original Message ----- 
From: "Daniel Bachfeld" <dab@heise.de>
To: <Full-Disclosure@lists.netsys.com>
Sent: Friday, October 29, 2004 12:19 PM
Subject: Re: [Full-Disclosure] Joke.cpl ???

It's a new Bagle-Version: Bagle.ay
it starts spreading a few hours ago.

Daniel Bachfeld
heise Security
.
----- Original Message ----- 
From: "altmann" <patrykgod@wp.pl>
To: <Full-Disclosure@lists.netsys.com>
Sent: Friday, October 29, 2004 11:34 AM
Subject: [Full-Disclosure] Joke.cpl ???

Hi,

I've five mails show up in my box just today all of them
have attachments with ".cpl" after the attachment name, i.e.

"Price.cpl",

"Joke.cpl" (below)

////////////////////////////////////////////////////////////////////////////

/////////////////////////////////////////////////////////////////////////

Note: This is an HTML message. For security reasons, only the raw HTML

code is

shown. If you trust the sender of this message then you can activate
formatted HTML display for this message by clicking here.


<html><body>
:))

<br>
</body></html>
Price.cpl

////////////////////////////////////////////////////////////////////////////

//////////////////////////////////////////////////////////////////////////


Do you know something more about this virus(?) ?
(Please don't write: search for it using Google)

P.
altmann

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-Disclosure] Joke.cpl ???, altmann Re: [Full-Disclosure] Joke.cpl ???, Daniel Bachfeld Re: [Full-Disclosure] Joke.cpl ???, Daniel Bachfeld Re: [Full-Disclosure] Joke.cpl ???, Tom Meier Re: [Full-Disclosure] Joke.cpl ???, Mihai Novitchi Re: [Full-Disclosure] Joke.cpl ???, Raymond Dijkxhoorn Re[2]: [Full-Disclosure] Joke.cpl ???, Geza Papp dr (Axelero) Fw: [Full-Disclosure] Joke.cpl ???, Daniel Bachfeld <= Re: [SPAM] Fw: [Full-Disclosure] Joke.cpl ???, Hugo van der Kooij Re: Fw: [Full-Disclosure] Joke.cpl ???, Eduard Warkentin Re: Fw: [Full-Disclosure] Joke.cpl ???, Dave Horsfall

Previous by Date:	Versandbestdtigung : AW : [Full-Disclosure] [SECURITY] [DSA 577-1] New postgresql packages fix symlink vulnerability, dirk
Next by Date:	Re: [Full-Disclosure] Slightly off-topic: www.georgewbush.com, Stef
Previous by Thread:	Re[2]: [Full-Disclosure] Joke.cpl ???, Geza Papp dr (Axelero)
Next by Thread:	Re: [SPAM] Fw: [Full-Disclosure] Joke.cpl ???, Hugo van der Kooij
Indexes:	[Date] [Thread] [Top] [All Lists]