Discovered: September 7, 2001
Updated: February 13, 2007 11:50:08 AM
Type: Worm
VBS.Trappy@mm is a Visual Basic Script (VBS) worm. It infects .htm, .plg, .asp, and .vbs files. It replicates using MAPI objects to spread itself as an attachment.
The worm exploits a known Microsoft Outlook Express security hole so that the worm is executed without having to run any attachment. Microsoft has patched this security hole to eliminate security vulnerabilities in "Scriptlet.TypLib" ActiveX controls. The patch is available at:
http://www.microsoft.com/technet/ie/tools/scrpteye.asp
Protection
-
Initial Rapid Release version September 7, 2001
-
Latest Rapid Release version September 7, 2001
-
Initial Daily Certified version September 7, 2001
-
Latest Daily Certified version June 17, 2008 revision 017
-
Initial Weekly Certified release date pending
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Easy
Damage
Distribution
Writeup By: Serghei Sevcenco
Technorati
Digg
Delicious
Reddit
StumbleUpon
Yahoo Buzz
Twitter
Facebook
Newsvine
