Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Full-disclosure] Static Blocking for the WMF Exploit - over 50known

from [Discussion Lists] Network Security [Permanent Link]
Subject: RE: [Full-disclosure] Static Blocking for the WMF Exploit - over 50known variants
Date: Thu, 29 Dec 2005 08:50:10 -0800 
Sorry if this was asked before, but how do I know if my machine has been 
compromised?  I am working on a way to contain any damage caused by this 
exploit, and it would be helpful to know for sure that what I am doing is 
working or not working.
 
Thanks!

        -----Original Message-----
        From: full-disclosure-bounces@lists.grok.org.uk 
[mailto:full-disclosure-bounces@lists.grok.org.uk] On Behalf Of Todd Towles
        Sent: Thursday, December 29, 2005 7:16 AM
        To: full-disclosure@lists.grok.org.uk
        Subject: [Full-disclosure] Static Blocking for the WMF Exploit - over 
50known variants
        
        
        Sunbelt has released several sites that are being used to spread bad 
WMF files 
         
        
http://sunbeltblog.blogspot.com/2005/12/more-than-50-wmf-variants-in-wild.html  
<http://sunbeltblog.blogspot.com/2005/12/more-than-50-wmf-variants-in-wild.html ;>
 
         
        I have added this sites into my static blocking, but this isn't a great 
method..but it can only help at this point. Wanted to share this information. 
         
         -Todd
        
        
         


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • RE: [Full-disclosure] Static Blocking for the WMF Exploit - over 50known variants, Discussion Lists <=
Previous by Date:  RE: Re[2]: [Full-disclosure] test this, Todd Towles
Next by Date:  RE: [Full-disclosure] Static Blocking for the WMF Exploit - over50known variants, Discussion Lists
Previous by Thread:  [Full-disclosure] Static Blocking for the WMF Exploit - over 50 known variants, Todd Towles
Next by Thread:  RE: [Full-disclosure] Static Blocking for the WMF Exploit - over50known variants, Discussion Lists
Indexes:  [Date] [Thread] [Top] [All Lists]