favicon.ico bad format
advICE :Intrusions : 2002555

Summary

The website you visited provided a "favorites icon" with a suspicious looking format.

Details

Internet Explorer 5.0 introduced a concept whereby if you add a site to your list of "favorites", it will download an icon to represent that site. The file that is requested is a file called "favicon.ico" that is formatted like other Windows icons. This file is either located in the same directory as the file added to favorites, or the root of the website.

However, IE5 also had a bug where a hacker could format the icon file in such a way to break into the web-browser.

This alert triggers when an incorrectly formatted icon appears.

False Positives

Decemember 21, 1999 Some sites simply have corrupted files, and don't necessarily indicate an attack. By examining customer log files, we have figured out the source of this problem, and have a fix for this issue. We are currently testing this fix, and plan on releasing it in the middle part of January. At that point, simply update the product to receive the fix.

parametric information URL The URL of the Icon file.

 
Version appeared: