This list is from http://support.microsoft.com/default.aspx?scid=kb;EN-US;290497
BANEXT ade BANEXT adp BANEXT asx BANEXT bas BANEXT bat BANEXT chm BANEXT cmd BANEXT com BANEXT cpl BANEXT crt BANEXT exe BANEXT hlp BANEXT hta BANEXT inf BANEXT ins BANEXT isp BANEXT js BANEXT jse BANEXT lnk BANEXT mdb BANEXT mde BANEXT msc BANEXT msi BANEXT msp BANEXT mst BANEXT pcd BANEXT pif BANEXT prf BANEXT reg BANEXT scf BANEXT scr BANEXT sct BANEXT shb BANEXT shs BANEXT url BANEXT vb BANEXT vbe BANEXT vbs BANEXT wsc BANEXT wsf BANEXT wsh Sincerely, William J. Baumbach II [EMAIL PROTECTED] 9975 Pennsylvania Ave. Manassas, Va. 20110-2028 Ph: 703-273-4400 ext:1708 Fax: 703-691-0946 ------------------------------------------------------------- ----- Original Message ----- From: "David Stavert" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, February 24, 2003 9:35 PM Subject: RE: [Declude.Virus] Banned extension - MDB Renaming the extension which, if used by someone unfamiliar with extensions, could result in a file having a legit extension. As we know, file extensions for a known file type will disappear in a Windows default environment. Try coaching someone through that problem. Beter still would be to replace the "." With an underscore i.e. filename_mdb It makes the file truly UN executable and it is easy to rename, easy to describe. David > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Rodney Bertsch > Sent: Monday, February 24, 2003 11:46 AM > To: [EMAIL PROTECTED] > Subject: RE: [Declude.Virus] Banned extension - MDB > > > Thanks gang, much appreciated!! > > - Rodney > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Smart > Business Lists > Sent: Monday, February 24, 2003 10:32 AM > To: Rodney Bertsch > Subject: Re: [Declude.Virus] Banned extension - MDB > > > Rodney, > > Monday, February 24, 2003 you wrote: > RB> But they wouldn't self execute would they? > > With a little JavaScript in an html carrier or a few other ways I > can imagine it could be made to open. > > RB> You would still have to open the Access DB first before > there were > RB> problems. Putting the ZIP restriction in there wouldn't really > RB> protect any farther, just one more step to get to the bad macros. > > Yes, the database has to open. But putting it in the zip means > that it has to be unzipped before it can open. > > RB> Or am I missing something here? Can the MDB file be made > to execute > RB> automatically just by receiving the e-mail? > > It can if the client is using Outlook or Outlook Express and does > not have proper security settings. It might even if the security > settings are proper. > > RB> What about Word and Excel files? They can also contain > macros, can > RB> they > be > RB> made to execute automatically just by opening the e-mail? > > Yes. > > Terry Fritts > > --- > [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com. --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com. --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com. --- [ Scanned for viruses and SPAM on 02/24/2003 at 21:31:45ET incoming www.DcMetroNet.com Declude version 1.67. For information about Viruses and Hoaxes visit www.commandsoftware.com/virus/index.html ] --- --- [ Scanned for viruses and SPAM on 02/24/2003 at 21:56:49ET outgoing http://www.DcMetroNet.com Declude v.1.67. For information about Viruses and Hoaxes visit http://www.commandsoftware.com/virus/index.html ] --- --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com.
