[Gllug] HTML Malware

Simon Morris simon.morris at cmtww.com
Thu Jul 6 12:40:30 UTC 2006


On Thu, 2006-07-06 at 13:55 +0100, Daniel P. Berrange wrote:
> On Thu, Jul 06, 2006 at 01:20:03PM +0100, Mick Farmer wrote:
> > Dear GLLUGers,
> >
> > I'm having difficulty explaining to a colleague that HTML
> > (e-mail) can contain malicious exploits.  Does anyone know
> > where I can obtain a benign example that I can demonstrate?
> 
> Its not neccessarily HTML itself which is dangerous, but rather than
> things it links to. For example, the earlier this year there was the
> Windows WMF image file vulnerability which spread via HTML email and
> the <img> links it contains.

In terms of phishing emails it is a lot easier to hide malicious URLs in
a HTML email than a plain text one.

Thanks

~sm
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 196 bytes
Desc: This is a digitally signed message part
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20060706/68acfa60/attachment.pgp>
-------------- next part --------------
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug


More information about the GLLUG mailing list