Netsky-V infects computers without attachment

Netsky-V worm can infect computers without e-mail attachment being clicked… :frowning: >:(
http://www.securitynewsportal.com/cgi-bin/cgi-script/csNews/csNews.cgi?database=JanEE.db&command=viewone&id=10&op=t

(sorry if posted before) :-\ >

NetSky.V worm was discovered late night on April 14th, 2004.

Netsky.V does not send itself as an attachment but uses HTML emails which exploit vulnerability known as Microsoft Internet Explorer XML Page Object Type Validation Vulnerability (MS03-040) and tries to download and execute itself from an infected host.

and i found this interesting too

The binary code bears high resemblance to the latest NetSky variant, NetSky.U. Sharing up to approximately 86% of the code.

P.S.All taken from F-Secure.com

Netsky.V imho needs 2 vulnerabilities to be unpatched:
Microsoft Internet Explorer XML Page Object Type Validation Vulnerability (MS03-040) &
Internet Explorer Object Data Remote Execution (MS03-032),


Microsoft Security Bulletin MS03-032
Cumulative Patch for Internet Explorer (822925)
Originally posted: August 20, 2003
Revised: October 3, 2003

&

Microsoft Security Bulletin MS03-040
Cumulative Patch for Internet Explorer (828750)

Originally posted: October 3, 2003
Revised: October 6, 2003

Those who still have those holes, imho have bigger problems than Netsky.V which is not widespread :wink: