Secunia - Stay Secure
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


OSX/Leap-A

First Report: 2006-02-16 13:53
Last Update: 2006-07-29 23:33
Risk Rating: Very Low Risk
Very Low Risk
Aliases: CME-4
IM-Worm.OSX.Leap.a
Leap.A
OSX.Leap.A
OSX/Leap
OSX/Leap-A
OSX/Leap.A
OSX/Oomp
OSX_LEAP.A
Information From AntiVirus Vendors


Below you will find virus information from different antivirus vendors included in this Secunia Virus Profile. Information about the virus along with links to removal tools will be listed below when available.

The information provided is sorted by the date on which the information first became publicy available on the antivirus vendors' websites. The earliest available reports are displayed first. Please note timestamps are in GMT+1.



#1 - SOPHOS

OSX/Leap-A

 Severity:
2/5 		File Size:
-
Reported:
2006-02-16 13:53 		Last Update:
2006-03-16 23:33
Description:
Full Report From Vendor


#2 - MCAFEE

OSX/Leap

 Severity:
3/7 		File Size:
-
Reported:
2006-02-16 15:57 		Last Update:
2006-02-24 23:42
Description:
-- Update: February 16, 2006 -- The risk assessment of this threat has been updated to Low-Profiled due to media attention at: http://www.theregister.co.uk/2006/02/16/mac_os-x_virus/
Full Report From Vendor  View/Hide ChangeLog

ChangeLog:

Changes are listed in chronological order with the latest changes first.


2006-02-24 23:42 Description was changed.

New:
"-- Update: February 16, 2006 -- The risk
assessment of this threat has been updated to
Low-Profiled due to media attention at:
http://www.theregister.co.uk/2006/02/16/mac_o
s-x_virus/"

Old:
"-- Update: February 16, 2006 --The risk
assessment of this threat has been updated to
Low-Profiled due to media attention at:
http://www.theregister.co.uk/2006/02/16/mac_o
s-x_virus/"

2006-02-17 03:48 Description was changed.

New:
"-- Update: February 16, 2006 --The risk
assessment of this threat has been updated to
Low-Profiled due to media attention at:
http://www.theregister.co.uk/2006/02/16/mac_o
s-x_virus/"

Old:
"The risk assessment of this threat has been
updated to Low-Profiled due to media
attention
at:http://www.theregister.co.uk/2006/02/16/ma
c_os-x_virus/OSX/Leap is an instant messaging
worm propagating via iChat on PowerPC-based
machines running Mac OS ..."

2006-02-16 21:17 Description was changed.

New:
"The risk assessment of this threat has been
updated to Low-Profiled due to media
attention
at:http://www.theregister.co.uk/2006/02/16/ma
c_os-x_virus/OSX/Leap is an instant messaging
worm propagating via iChat on PowerPC-based
machines running Mac OS ..."

Old:
"The risk assessment of this threat has been
updated to Low-Profiled due to media
attention at:
http://www.theregister.co.uk/2006/02/16/mac_o
s-x_virus/ OSX/Leap is an instant messaging
worm propagating via iChat on PowerPC-based
machines running Mac O..."

2006-02-16 18:37 Severity was raised from 2/7 to 3/7.

2006-02-16 18:37 Description was changed.

New:
"The risk assessment of this threat has been
updated to Low-Profiled due to media
attention at:
http://www.theregister.co.uk/2006/02/16/mac_o
s-x_virus/ OSX/Leap is an instant messaging
worm propagating via iChat on PowerPC-based
machines running Mac O..."

Old:
"OSX/Leap is an instant messaging worm
propagating via iChat on PowerPC-based
machines running Mac OS X."

2006-02-16 17:32 Severity was raised from 1/7 to 2/7.

2006-02-16 17:32 Description was changed.

New:
"OSX/Leap is an instant messaging worm
propagating via iChat on PowerPC-based
machines running Mac OS X."

Old:
"AVERT has received a sample of this threat
and is currently in the process of analyzing
it. Details will be posted when they are
available. Please check back shortly. Top of
Page"


#3 - SYMANTEC

OSX.Leap.A

 Severity:
1/5 		File Size:
-
Reported:
2006-02-16 16:24 		Last Update:
2006-03-15 23:34
Description:
OSX.Leap.A is a worm that targets installs of Macintosh OS X and spreads via iChat Instant Messenger program.
Full Report From Vendor  View/Hide ChangeLog

ChangeLog:

Changes are listed in chronological order with the latest changes first.


2006-02-17 13:50 Description was changed.

New:
"OSX.Leap.A is a worm that targets installs of
Macintosh OS X and spreads via iChat Instant
Messenger program. "

Old:
"OSX.Leap.A is a worm that targets installs of
Macintosh OS X and spreads via iChat Instant
Messenger program. It infects files on the
Macintosh OS X version 10.4."

2006-02-17 01:04 Description was changed.

New:
"OSX.Leap.A is a worm that targets installs of
Macintosh OS X and spreads via iChat Instant
Messenger program. It infects files on the
Macintosh OS X version 10.4."

Old:
"OSX.Leap.A is a worm that runs on the
Macintosh OS X and spreads via iChat Instant
Messenger program."


#4 - COMPUTER ASSOCIATES

OSX/Leap.A

 Severity:
- 		File Size:
-
Reported:
2006-02-17 02:27 		Last Update:
2006-02-20 23:43
Description:
Full Report From Vendor


#5 - TREND MICRO

OSX_LEAP.A

 Severity:
1/3 		File Size:
-
Reported:
2006-02-17 05:06 		Last Update:
2006-03-04 23:36
Description:
Full Report From Vendor


#6 - SOPHOS

OSX/Leap-A

 Severity:
2/5 		File Size:
-
Reported:
2006-06-30 12:03 		Last Update:
2006-07-29 23:33
Description:
OSX/Leap-A is an instant-messaging worm for the Mac OS X platform. The worm attempts to spread via the iChat instant messaging system, sending itself to available contacts on the infected users' buddy list in a file called latestpics.tgz. OSX/Leap-A attempts to infect recently used applications.
Full Report From Vendor



Please note: The information that this Secunia Virus Profile is based on comes from a third party unless stated otherwise.

The grouping process is done completely automatically, therefore minor inconsistencies may occur. For more information about Secunia Virus Information, please read: About Virus Information.







Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
Opera Multiple Vulnerabilities
2.
vBulletin Private Message Subject Script Insertion
3.
neon "parse_domain() " Denial of Service Vulnerability
4.
Folder Lock Weak Password Encryption Security Issue
5.
Anzio Web Print Object (WePO) ActiveX Component "mainurl" Buffer Overflow
6.
SunShop Shopping Cart class.ajax.php SQL Injection Vulnerabilities
7.
Short Url & Url Tracker Script "id" SQL Injection Vulnerability
8.
PHP Live Helper Multiple Vulnerabilities
9.
URL Rotator Script "id" SQL Injection Vulnerability
10.
Microsoft Outlook Express MHTML URL Processing Vulnerability





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia