myITforum.com
Welcome to myITforum.com Sign in | Join | Help
in Search
Site Home Home Bloggers List Blogs Photos Downloads

Harry Waldron at myITforum.com

Sharing Security Developments, and Best Practices for corporate and home users

LhDropper - uses LHZ archive file extension

This new threat requires the popular Japanese archive utility Lhaca to be installed in order to associate the extension and capitalize on the vulnerability.  This may be need to be added to the blocking lists where it is pertinent. 

LhDropper - uses LHZ archive file extension
http://www.symantec.com/enterprise/security_response/weblog/2007/06/beware_of_lzh.html
http://www.symantec.com/enterprise/security_response/writeup.jsp?docid=2007-062506-5500-99

QUOTE: Trojan.Lhdropper is a Trojan horse that drops malicious files by exploiting a vulnerability in Lhaca, a freeware application that can compress and decompress LZH archive files.

Published Jun 25 2007, 07:20 PM by hwaldron

Comments

No Comments

This Blog

Syndication
Copyright - www.myITforum.com, Inc. - 2007 All Rights reserved.
Powered by Community Server (Commercial Edition), by Telligent Systems