Quoted from http://www.auscert.org.au/render.html?it=6771 New trojan spam targeting unpatched Internet Explorer VML vulnerability OVERVIEW A new spam email purporting to be from the Commonwealth Bank of Australia directs unsuspecting users to sites that use the recently discovered unpatched Internet Explorer VML processing vulnerability [1] to attempt to install malware. At the moment this appears to be wide-spread with well over 1000 emails reported in a single organisation. IMPACT Users who follow the links contained within the email with a vulnerable version of Internet Explorer may become infected with an unknown trojan. As this trojan is linked to an email referencing a financial institution it is likely it will attempt to steal authentication details for the purpose of financial fraud. -- -------list-services-below----------- Regards, John Durham (list moderator) <http://modecideas.com/contact.html?sig> Freelists login at http://www.freelists.org/cgi-bin/lsg2.cgi List archives at http://www.freelists.org/archives/pchelpers PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig Latest news live feeds at http://modecideas.com/indexhomenews.htm?sig Good advice is like good paint- it only works if applied.