Re: DSO Exploit

From: Bruce Chambers (bruce_a_chambers_at_h0tmail.com)
Date: 08/29/04

• Next message: Bruce Chambers: "Re: SP2 Firewall"
• Previous message: adam: "Re: remote web workplace"
• In reply to: Barry: "DSO Exploit"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sat, 28 Aug 2004 20:48:55 -0600

Greetings --

    The DSO exploit was patched long ago by IE Cumulative Update
MS02-015, in March of 2002. If you've installed this specific patch,
or any subsequent IE Cumulative Updates, or Service Pack 1, you're
safe. It would appear that the latest version of Spybot S&D is only
checking for Internet zone settings in the registry that could be used
as work-around protection, and not for the presence of any corrective
patches. Hopefully, the makers of Spybot will soon fix this bug.

 MS02-015 March 28, 2002 Cumulative Patch for Internet Explorer
http://support.microsoft.com/default.aspx?scid=kb;EN-US;319182

    If you like, you can test your system for this particular
vulnerability at this web site:
http://www.greymagic.com/security/advisories/gm001-ie/

    The makers of SpyBot S&D have acknowledged the problem and will
fix it on their next update:
http://www.safer-networking.org/index.php?page=paragraphs&detail=currentfaqs

    In the meantime, in SpyBot S&D, click Mode > Advanced > Settings >
Ignore Products > Security > DSO Exploit, to turn off the false alarm.

Bruce Chambers

-- 
Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html
You can have peace. Or you can have freedom. Don't ever count on 
having both at once. - RAH
"Barry" <anonymous@discussions.microsoft.com> wrote in message 
news:1ec401c48d27$27984cb0$a601280a@phx.gbl...
>I use windows xp and have downloaded the service pack 2,
> and also use zone alarm pro. Yet everyday when I run a
> spybot search it finds a DSO expolit with 5 entries, which
> it says gains entry through a security leak in Microsoft.
> How can I prevent this exploit from gaining access to my
> computer. Any help would be much appreciated 

---

• Next message: Bruce Chambers: "Re: SP2 Firewall"
• Previous message: adam: "Re: remote web workplace"
• In reply to: Barry: "DSO Exploit"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: DSO EXPLOIT?? (spybot) ... or any subsequent IE Cumulative Updates, or Service Pack 1, you're ... the makers of Spybot will soon fix this bug. ... 2002 Cumulative Patch for Internet Explorer ... > Searhing for spyware led me to the best software, ... (microsoft.public.windowsxp.security_admin) Re: DSO exploit and IE 6 ... or any subsequent IE Cumulative Updates, or Service Pack 1, you're ... the makers of Spybot will soon fix this bug. ... 2002 Cumulative Patch for Internet Explorer ... > download and it says I do have it cant install. ... (microsoft.public.windowsxp.general) Re: DSO ... or any subsequent IE Cumulative Updates, or IE Service Pack 1, you're ... the makers of Spybot will soon fix this bug. ... 2002 Cumulative Patch for Internet Explorer ... (microsoft.public.windowsxp.general) Re: DSO Exploit ... or any subsequent IE Cumulative Updates, ... the makers of Spybot will soon fix this bug. ... 2002 Cumulative Patch for Internet Explorer ... Ignore Products> Security> DSO Exploit, to turn off the false alarm. ... (microsoft.public.security.virus) Re: DSO Exploit ----and Add/Remove Programs ... or any subsequent IE Cumulative Updates, or Service Pack 1, you're ... the makers of Spybot will soon fix this bug. ... 2002 Cumulative Patch for Internet Explorer ... (microsoft.public.windowsxp.security_admin)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)