When is a Image file not a Image file
When is a Image file not a Image file ... when it is used to redirect the visitor to another often malicious site. You would think by now (Windows Vista) that Microsoft would have corrected this flaw, but I guess not ...
Look closely in the Result column at the "favicon.ico" entry above, notice the "302" ... well 302 is used to redirect the browser to another location ... in this case - "adult-models(dot)org" which NOD32 detects as: JS/Exploit.MS05-013. There are about 15 other related sites that I found using this same "302" redirect method.
Although "MS05-013" is an older patched vulnerability, it is still rather nasty ...
If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
This is a good example why it's so important to keep your Windows updates current, or upgrade to Windows Vista.