DSO Exploits

[Stu]

I have an interesting question which I don`t think I`ve
seen posted before but if it has please forgive the
repetition. Today SB S&D located a DSO exploit affecting
five registry keys on my system. Spybot defs were the
latest: Detection (716KB) immunization (364KB). I ran a
full system scan on MSAS but nothing was reported: MSAS
Defs were 5747. I believe DSO exploits are a form of
spyware and wonder if MSAS is programmed to cope with
them. I`d be interested in any comments and can make a
copy the affected registry keys available if you think it
would be helpful.

Stu

 

[Bill Sanderson]

Engel is right. DSO exploits, as called out by Spybot Search & Destroy in a
fully patched Windows install, are essentially a bug in Spybot Search &
Destroy. They won't be called out by the next version, which is available
here as a beta:

Are you running the 1.4 version?

http://www.download.com/Spybot-Search-Destroy/3000-8022_4-10122137.html

If not, download that one and see this detection go away, I believe.

--

 

[Stu]

Hi Bill. Just picked up your comment and thanks. Yes as it
happens - S&D 1.4. It seemed to happen after I had opened
Outlook Express (first time in ages) as I always use
Outlook. I did a little research and see as well as
earlier versions of IE, Outlook Express was listed as
having been vulnerable too. Strange as I`m fully updated
with all the updates MS have on offer. Since my first
thread here I have run S&D twice more first run gave a DSO
Exploit (two restristry keys affected) and second run -
clean.

Stu
-----Original Message-----

 

[Bill Sanderson]

Hmm - It might be wise to check your version, via help, about, of Outlook
Express.

There is an upgrade path in which the OE code does not get updated when IE
does.

You should be seeing OE version consistent with IE version numbers.

--