Heads Up: Yahoo Mail Virus

[BarTopDancer]

Apparently this one can spread just by opening the email.

Quote:

Yahoo email worm can infect without clicking attachments Print E-mail
By Stan Beer
Tuesday, 13 June 2006
Security vendor Symantec has identified a new JavaScript worm that exploits an unpatched vulnerability in Yahoo!'s web-based e-mail program. The worm can infect users' machines merely by opening a rogue email message - users do not even have to open an attachment for their system to get infected.

The worm - JS.Yamanner@m - spreads itself to the user's Yahoo! e-mail contacts when the user opens an e-mail infected by the worm. JS.Yamanner then sends these e-mail addresses to a remote server on the Internet. Only those using contacts with an e-mail address that is @yahoo.com or @yahoogroups.com are impacted by this worm. Users of Yahoo! Mail Beta do not appear to be vulnerable to JS.Yamanner.

SNIP

Quote:

Symantec has advised that as there is no patch at present, users should update antivirus definitions and firewall signatures and to block any e-mails sent from av3[at]yahoo.com.