Blog
Quick heal blog

Cross Platform OpenOffice Virus POC (Proof of Concept)

 May 25, 2007

Estimated reading time: 1 minute

We have received a proof of concept virus called IRC.Badbunny that uses vulnerability in OpenOffice to infect Windows, Linux and Mac OS X. Respect to the host operating system the virus perform its actions to infect the compromised system. Badbunny will download an image from the remote server. More updates...

Windows Update…

 May 9, 2007

Estimated reading time: 1 minute

Microsoft has released Updates for seven critical updates. The vulnerabilities has been found in Excel, Word, Microsoft Office, Microsoft Exchange, Internet Explorer, CAPICOM and Windows DNS Server. All the vulnerabilities could be exploited by a remote user to execute arbitrary code. For more info click here

IE7 Beta spam/malware

 May 8, 2007

Estimated reading time: 1 minute

We have been receving reports of IE7 Beta spam mails containing links to download malwares. All the links in the mail points to “update.exe” file, which is been hosted on various URLs. IE7 Beta spam mail. Update.exe is a Trojan downloader program which in turn download other malware components from...

Microsoft Security Bulletin for April 2007

 April 11, 2007

Estimated reading time: 1 minute

This months security patch consists update for Windows CSRSS, Microsoft Content Management Server, Universal Plug and Play, Microsoft Agent and the most widely exploited vulnerability in last few weeks ANI file (Vulnerabilities in GDI Could Allow Remote Code Execution). All the users and reader are requested to apply this patch....

Microsoft Release Patch for ANI file exploit

 April 4, 2007

Estimated reading time: 1 minute

http://www.microsoft.com/technet/security/Bulletin/MS07-017.mspx This update is posted earlier to the usual second Tuesday monthly Security Release because of the alarming increase of Malwares and sites exploiting the ANI vulnerability. All users and reader are requested to apply this patch.

Animated cursor exploited

 March 30, 2007

Estimated reading time: 1 minute

Microsoft issued a Security Advisory about targeted attacks exploiting a vulnerability in the way Windows handles animated cursor (.ani) files. More Info at Microsoft Security Advisory We have reports of ANI file exploited and hosted on some of the sites. Added the detection of vulnerable ANI files as Exploit.MS05-002 in...

Brand Equity Quiz kick off

 March 13, 2007

Estimated reading time: 1 minute

Quick Heal is one of the National Sponsor for Brand Equity Quiz 2007. Pune regional round was held on Saturday. Bhatkuli and D’Silva won the quiz and now will represent Pune region at the finals to be held in Mumbai. Our CEO Mr. Kailash Katkar handed prizes to thrid and...

Updates for February

 February 14, 2007

Estimated reading time: 1 minute

Microsoft monthly updates for Feburary has been released. It includes 6 Critical patches and 6 important patches. Most of vulernabilities in critical and important section could allow remote code execution, so it’s very important to patch your systems. More infomation on the patches released on Microsoft Security Updates Happy Valentines...

Applause to Chinese Police

 February 13, 2007

Estimated reading time: 1 minute

Chinese Police authorities have arrested eight suspects involved in producing and spreading a severe computer virus. The virus W32.Viking (also known as Worm.Fujacks) made headlines last month because it converts icons of infected programs into a picture of a panda burning joss-sticks as it stole usernames and passwords from on-line...

Vulnerability in Sun Solaris Telnet Daemon

 February 13, 2007

Estimated reading time: 1 minute

Authentication bypass vulnerability in the Sun Solaris telnet daemon (in.telnetd) has been discovered. The Sun Solaris telnet daemon does not properly parse the USER Environment variable before passing it to the login process. By supplying a specially crafted USER Environment variable over telnet, a remote attacker may be able to...