Thanks Scott. I'll forward to them, perhaps they can locate a real programmer and get it fixed.
Karen > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of R. Scott Perry > Sent: Wednesday, August 06, 2003 6:42 PM > To: [EMAIL PROTECTED] > Subject: Re: [Declude.Virus] vuln question > > > > >Could someone look at the attached message file and tell me > where the exact > >problem is with the vulnerability? > > > >The Declude Virus log shows: > > > >08/05/2003 18:09:42 Q2b24009a0072c017 Outlook 'CR' vulnerability [To: > >koland] in line 3 > >08/05/2003 18:09:42 Q2b24009a0072c017 File(s) are INFECTED [[Outlook 'CR' > >Vulnerability]: 0] > >08/05/2003 18:09:42 Q2b24009a0072c017 Scanned: CONTAINS A VIRUS [MIME: 1 > >3879] > > > >And the (raw) message file is attached, so I don't change the formatting > >accidentally. > > The problem is that almost every line ends in "CRCRLF", rather > than "CRLF", > which is not allowed per the RFCs (and causes a dangerous vulnerability). > > -Scott > --- > Declude JunkMail: The advanced anti-spam solution for IMail mailservers. > Declude Virus: Catches known viruses and is the leader in mailserver > vulnerability detection. > Find out what you have been missing: Ask for a free 30-day evaluation. > > --- > [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com. --- [This E-mail scanned for viruses by Declude Virus] --- [This E-mail scanned for viruses by Declude Virus] --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com.
