MIME type of readme.eml (was Re: New "concept" virus/worm?

From: Rob Quinn (rquinnat_private)
Date: Tue Sep 18 2001 - 22:25:20 PDT

Next message: Henrik Pedersen: "Re: MIME type of readme.eml (was Re: New "concept" virus/worm?"

Previous message: Chris Thornberry: "Corrupted IE with nimda virus"
In reply to: Jim Olsen: "Re: New "concept" virus/worm?"
Next in thread: Henrik Pedersen: "Re: MIME type of readme.eml (was Re: New "concept" virus/worm?"
Next in thread: Jim: "Re: New "concept" virus/worm?"
Reply: Henrik Pedersen: "Re: MIME type of readme.eml (was Re: New "concept" virus/worm?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> - add this string to the web pages found on the server:
> <html><script language="JavaScript">window.open("readme.eml", null, 
> "resizable=no,top=6000,left=6000")</script></html>

 My Raptor firewall and WGET to one sample site show this as MIME type
"message/rfc822".  Does this seem to be universal? If I block just that type,
will it be enough to stop nimda hitting IE users?

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Henrik Pedersen: "Re: MIME type of readme.eml (was Re: New "concept" virus/worm?"
Previous message: Chris Thornberry: "Corrupted IE with nimda virus"
In reply to: Jim Olsen: "Re: New "concept" virus/worm?"
Next in thread: Henrik Pedersen: "Re: MIME type of readme.eml (was Re: New "concept" virus/worm?"
Next in thread: Jim: "Re: New "concept" virus/worm?"
Reply: Henrik Pedersen: "Re: MIME type of readme.eml (was Re: New "concept" virus/worm?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Sep 18 2001 - 22:29:03 PDT