Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

HTML_SWENFRAUD.A

Feb 5, 2004 2:41PM PST

Virus type: Html

Destructive: No

Description:


This malicious HTML script may arrive as an email or a posted Web page. The email message sent out may appear to be from a legitimate source but is actually a spoofed version deviced to trick a user into believing that it is an official security warning from Microsoft.

It displays the following message:

http://www.trendmicro.com/vinfo/images/html_swenfraud_a_img1.gif

To spoof a Web site, this malware uses an Internet Explorer (IE) vulnerability. It renders an attacker capable to create a link to a deceptive Web site that displays a legitimate URL in the IE address or status bar. It also invokes confidence in an unknowing user to enter personal data to a malicious Web site.

For more information regarding this vulnerability, visit the following Microsoft page:

Microsoft Security Bulletin 04-004
It runs on Windows 95, 98, ME, NT, 2000 and XP.

http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=HTML_SWENFRAUD.A

Discussion is locked