Stripping off attachements doesn't help in this case since the virus is
not in the email. The virus works by expoiting a memory management bug
in the Microsoft JPEG viewer. It's the page you're viewing that
contains the virus.
But this virus is old. If you keep your system and virus definitions up
to date you shouldn't have a problem. From the Symantec link that Moose
posted:
------------------------------------------------------------------
Trojan.Ducky.B is a Trojan horse program that exploits the Microsoft
GDI+ Library JPEG Segment Length Integer Underflow vulnerability
(described in the Microsoft Security Bulletin MS04-028).
Note: Virus definitions dated prior to September 29, 2004 detect this
threat as Bloodhound.Exploit.13.
-------------------------------------------------------------------
Chuck Norcutt
Thomas Clausen wrote:
>>
>>Yeah, I didn't see any warnings, not that I would expect to as I
>>believe the
>>list software strips off any attachments - can't really see how a
>>virus
>>would make it through.
>
>
> Yep, any attachments (and html email and such) is removed before
> postings go through to the list.
>
> Cheers,
>
> List Mum
>
==============================================
List usage info: http://www.zuikoholic.com
List nannies: olympusadmin@xxxxxxxxxx
==============================================
|