New trojan being distributed via WMF spam

There's a new trojan spam run underway, exploiting again the WMF vulnerability.

The exploit code is taken directly from the last Metasploit distribution. So the Metasploit exploit is assisting botnet herders and spyware distributors to take over the computers of users who still have no Microsoft patch to close the hole.

In this particular case the spammed message was a fake warning from Yale University professor about student vandalism that supposedly happened over the new year: F-Secure : News from the Lab - January of 2006

Linked by shanmuga Wednesday, 4th January 2006 11:22PM