Ken Cormack wrote: > You're right, David... > > I compared my list of forbiddeen filename extensions to the one in the > sample filter. My list has grown over time, and I see that .vcf's > were added to our filter by our information security group a few > years ago, when they added most of the list of extensions that MS > considers directly executable. > > Ken
There was an exploit in Outlook... http://www.microsoft.com/technet/security/bulletin/MS01-012.mspx Which was actually used... http://vil.nai.com/vil/content/v_99020.htm -- Matthew.van.Eerde (at) hbinc.com 805.964.4554 x902 Hispanic Business Inc./HireDiversity.com Software Engineer _______________________________________________ NOTE: If there is a disclaimer or other legal boilerplate in the above message, it is NULL AND VOID. You may ignore it. Visit http://www.mimedefang.org and http://www.roaringpenguin.com MIMEDefang mailing list [email protected] http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
