What is W32.Mimail.C@mm and how does it affect me?

The W32. Mimail.C@mm worm is a variant of W32.Mimail.A@mm
that spreads by email and steals information from infected computers.

The email has the following characteristics:

Subject: Re[2]: our private photos [random string of letters]

Attachment: photos.zip

Note: Photos.zip contains only one file, photos.jpg.exe.

This zip uses a code-base exploit to create and execute a copy
of photos.jpg.exe in the Temporary Internet Files folder. The
compression method of this file inside the zip file is stored
so that compression is not used at all.

For more information about this vulnerability and a Microsoft
patch, read the Microsoft Knowledge Base Article 3300994. We
encourage system administrators to apply the Microsoft patch to
prevent infection by this worm.

For more technical information, refer to the W32.Mimail.C@mm
writeup at:

http://securityresponse.symantec.com/avcenter/venc/data/w32.mimail.c@mm.html

What action can I take from here?

RUN LIVEUPDATE - Symantec Security Response posted virus definitions
to protect against this threat on October 31, 2003 (via LiveUpdate).

All users of Norton AntiVirus who do not have up-to-date virus
protection should immediately run LiveUpdate for protection from
W32.Mimail.C@mm. Virus definitions are available via the LiveUpdate
feature in the Norton AntiVirus product or the Symantec Security
Response Web site.

Symantec Security Response encourages all Norton AntiVirus users
to regularly download virus definitions in order to protect against
future threats.

Sincerely,
Symantec Security Response Team
Symantec Corporation