Home / Culture and Society / Science and Technology / Computer Bug and Security News 4/7/05

Computer Bug and Security News 4/7/05

Please Share...Print this pageTweet about this on TwitterShare on Facebook0Share on Google+0Pin on Pinterest0Share on Tumblr0Share on StumbleUpon0Share on Reddit0Email this to someone

Here are some of the more interesting bugs from last week’s BugBlog.

The Internet Storm Center has issued a warning about Trojan horse programs hiding within Web "postcards." You may get an email message that says something like, "You have received a virtual postcard from a family member," with a link. Clicking the link will install the Trojan. Another set of threats may come masquerading as greeting cards from a legitimate card company such as Blue Mountain or American Greetings. (That’s just great — now I’ll have to go back to buying snail-mail cards.) Read more about this at

There is a bug in the JavaScript engine of Mozilla Firefox 1.x and also Mozilla 1.7. This bug may allow heap memory to be exposed; this memory may contain sensitive information that could lead to further attacks. You can read the workings of Mozilla.org as they fix this at https://bugzilla.mozilla.org/show_bug.cgi?id=288688;
apparently, part of this bug stretches back to 1997. They have a fix, but it has not yet been released. The bug was reported by Secunia at http://secunia.com/advisories/14820/ from Russian sources.

Adobe Acrobat 7.0 and earlier and the Adobe Reader 7.0 and earlier have a bug in the way they interact with an Internet Explorer ActiveX control. If this control is invoked directly by a web page, an attacker may be able to learn whether certain local files exist. This will only happen on a computer that is running Microsoft Internet Explorer. According to Adobe, the file contents are not exposed. This has been fixed in the Adobe Acrobat and Acrobat Reader 7.0.1 update.

Visit the BugBlog for daily coverage of computer bugs and other things that can go wrong with your computer.

Powered by

About Bruce Kratofil