New E-Mail Worm: W32/Mydoom@MM

J

Jesse Pedroza

**********************************************************************
CONTENT: PSS Security Response Team Alert - New Worm: W32/Mimail@mm

SEVERITY: MODERATE

DATE: January 26, 2004

PRODUCTS AFFECTED: Microsoft Outlook, Microsoft Outlook Express, and
Web-based e-mail

**********************************************************************

WHAT IS IT?
W32/Mydoom@MM spreads via e-mail. The Microsoft Product Support Services
Security Team is issuing this alert to advise customers to be on the alert
for this virus as it spreads in the wild. Customers are advised to review
the information and take the appropriate action for their environments.

IMPACT OF ATTACK:
Mass Mailing

TECHNICAL DETAILS:
For additional details on this worm from anti-virus software vendors
participating in the Microsoft Virus Information Alliance (VIA) please
visit the following links:

Network Associates:
http://vil.nai.com/vil/content/v_100983.htm

Trend Micro:
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_MIMAIL.
R

Symantec
http://securityresponse.symantec.com/avcenter/venc/data/[email protected]


Computer Associates:
http://www3.ca.com/virusinfo/virus.aspx?ID=38102

Sybari:
http://www.sybari.com/alerts/alertdetail.asp?Name=W32/MyDoom.A@mm

For more information on Microsoft’s Virus Information Alliance please visit
this link:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/
topics/virus/via.asp
Please contact your Antivirus Vendor for additional details on this virus.

PREVENTION:
Outlook 2000 post SP2 and Outlook XP SP1 include the most recent updates to
improve the security in Outlook and other Office programs. This includes
the functionality to block potentially harmful attachment types. It can be
configured to block Zip file attachments but does not do so by default.

To ensure you are using the latest version of Office click here:
http://office.microsoft.com/ProductUpdates/default.aspx

By default, Outlook 2000 pre SR1 and Outlook 98 did not include this
functionality, but it can be obtained by installing the Outlook E-mail
Security Update. More information about the Outlook E-mail Security Update
can be found here: http://office.microsoft.com/Downloads/2000/Out2ksec.aspx

Outlook Express 6 can be configured to block access to potentially-damaging
attachments. Information about how to configure this can be found here:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q291387

Outlook Express all other versions: Previous versions of Outlook Express do
not contain attachment-blocking functionality. Please exercise extreme
caution when opening unsolicited e-mail messages with attachments.

Web-based e-mail programs: Use of an application-level firewall can protect
you from being infected with this virus through Web-based e-mail programs.

RECOVERY:
If your computer has been infected with this virus, please contact your
preferred antivirus vendor or Microsoft Product Support Services for
assistance with removing it.

As always please make sure to use the latest Anti-Virus detection from your
Anti-Virus vendor to detect new viruses and their variants.

If you have any questions regarding the tool or its implementation after
reading the above resources, you should contact Product Support Services in
the United States at 1-866-PCSafety (1-866-727-2338). International
customers should contact their local subsidiary.

Thank you,

PSS Security
 
T

Tom Pepper Willett

Jesse:

You're a couple of days behind the times ;-)
--
-----
Tom Pepper Willett
Microsoft MVP - FrontPage
http://www.microsoft.com/office/frontpage/prodinfo/default.mspx
http://msdn.microsoft.com/office/understanding/frontpage/
----
| **********************************************************************
| CONTENT: PSS Security Response Team Alert - New Worm: W32/Mimail@mm
|
| SEVERITY: MODERATE
|
| DATE: January 26, 2004
|
| PRODUCTS AFFECTED: Microsoft Outlook, Microsoft Outlook Express, and
| Web-based e-mail
|
| **********************************************************************
|
| WHAT IS IT?
| W32/Mydoom@MM spreads via e-mail. The Microsoft Product Support Services
| Security Team is issuing this alert to advise customers to be on the alert
| for this virus as it spreads in the wild. Customers are advised to review
| the information and take the appropriate action for their environments.
|
| IMPACT OF ATTACK:
| Mass Mailing
|
| TECHNICAL DETAILS:
| For additional details on this worm from anti-virus software vendors
| participating in the Microsoft Virus Information Alliance (VIA) please
| visit the following links:
|
| Network Associates:
| http://vil.nai.com/vil/content/v_100983.htm
|
| Trend Micro:
|
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_MIMAIL.
| R
|
| Symantec
|
http://securityresponse.symantec.com/avcenter/venc/data/[email protected]
|
|
| Computer Associates:
| http://www3.ca.com/virusinfo/virus.aspx?ID=38102
|
| Sybari:
| http://www.sybari.com/alerts/alertdetail.asp?Name=W32/MyDoom.A@mm
|
| For more information on Microsoft’s Virus Information Alliance please
visit
| this link:
|
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/
| topics/virus/via.asp
| Please contact your Antivirus Vendor for additional details on this virus.

|
| PREVENTION:
| Outlook 2000 post SP2 and Outlook XP SP1 include the most recent updates
to
| improve the security in Outlook and other Office programs. This includes
| the functionality to block potentially harmful attachment types. It can be
| configured to block Zip file attachments but does not do so by default.
|
| To ensure you are using the latest version of Office click here:
| http://office.microsoft.com/ProductUpdates/default.aspx
|
| By default, Outlook 2000 pre SR1 and Outlook 98 did not include this
| functionality, but it can be obtained by installing the Outlook E-mail
| Security Update. More information about the Outlook E-mail Security Update
| can be found here:
http://office.microsoft.com/Downloads/2000/Out2ksec.aspx
|
| Outlook Express 6 can be configured to block access to
potentially-damaging
| attachments. Information about how to configure this can be found here:
| http://support.microsoft.com/default.aspx?scid=kb;en-us;Q291387
|
| Outlook Express all other versions: Previous versions of Outlook Express
do
| not contain attachment-blocking functionality. Please exercise extreme
| caution when opening unsolicited e-mail messages with attachments.
|
| Web-based e-mail programs: Use of an application-level firewall can
protect
| you from being infected with this virus through Web-based e-mail programs.
|
| RECOVERY:
| If your computer has been infected with this virus, please contact your
| preferred antivirus vendor or Microsoft Product Support Services for
| assistance with removing it.
|
| As always please make sure to use the latest Anti-Virus detection from
your
| Anti-Virus vendor to detect new viruses and their variants.
|
| If you have any questions regarding the tool or its implementation after
| reading the above resources, you should contact Product Support Services
in
| the United States at 1-866-PCSafety (1-866-727-2338). International
| customers should contact their local subsidiary.
|
| Thank you,
|
| PSS Security
|
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top