[Mimedefang] OS wars... [was Viruses: Bounce or Discard?]
Les Mikesell
les at futuresource.com
Mon Sep 29 16:36:01 EDT 2003
On Mon, 2003-09-29 at 14:44, Kimmo Jaskari wrote:
> Outlook isn't wildly insecure; it's not like it is a wide open road that any
> Tom, Dick or Harry can exploit with ease.
Earlier versions are. They would execute attachments as they were
viewed in the preview pane and made the decision to auto-execute
based on the mime header (which might be for a sound type) but
actually used the file name extension (which might be .exe) to
decide how to process it. There are still millions of the old ones
out there. And if you haven't received it yet, there is a really
good forgery of an email from Microsoft claiming to contain a
security patch. Everybody knows by now that they need the security
patches, right?
---
Les Mikesell
les at futuresource.com
More information about the MIMEDefang
mailing list