JS.Yamanner@m is a worm that is written in JavaScript. It exploits a vulnerability in the Yahoo email service to send a copy of itself to the user's Yahoo email contacts.
More information can be found below
http://securityresponse.symantec.com...amanner@m.html
JS.Yamanner@m performs the following actions:
Arrives on the compromised computer as an HTML email containing Javascript. The email may have the following characteristics:
From: Varies
Subject: New Graphic Site
Message body: Note: forwarded message attached.
Once the email is opened the worm exploits a vulnerability in the Yahoo email service to run a script.
Sends a copy of itself to certain email addresses gathered from the Yahoo email folders.
Targets email addresses from the @yahoo.com and? @yahoogroups.com domains.
Contacts the following URL:
[
http://]www.av3.net/index.htm
Sends a list of email addresses gathered to the above URL.
Cheers!
[ 06-12-2006, 09:05 PM: Message edited by: T-D-C ]