Symantec issued a warning about a new worm that exploits a known Java-based vulnerability in Yahoo Mail. Yahoo Mail customers should be suspicious of e-mail sent from firstname.lastname@example.org, with the subject line "New Graphics site" with body text that reads "this is a test." Symantec warned on Monday that Yahoo customers need only open the message to read its content to become infected; no need to open any attached files. Once active, the worm spreads to all yahoo.com and yahoogroups.com e-mail addresses found on the victim's computer. Despite the potential for widespread damage, the worm is not spreading very quickly and is considered to be a very low threat. For more details on this worm, see Symantec's alert regarding JS.Yamanner@m.