Hello SyP,
On Sun, 21 Jan 2001 21:20:36 +0100 GMT your local time,
which was Sunday, January 21, 2001, 8:20:36 PM (GMT+0100) (BST) my local time,
SyP wrote:
>>> I know that, historically, a virus can auto-generate e-mails
>>> without the users knowledge.
Jamie>> Only on systems using insecure mailers such as Outlook. This is
Jamie>> due to a security flaw in the way tehse programs handle VB
Jamie>> scripting. Much of this can be prevented by using the spydog
Jamie>> patches.
S> No, Outlook is insecure because it doesn't handle attachments in a
S> secure way, and IIRC there was a vulnerability when az OE user could
S> get infected even if he/she didn't click on the attachment, just
S> opened the messagge.
The spydog patches did fix the VB hole which allowed variants of
Melissa to work in Outlook Express and Outlook situations. As TB! does
not have a VB script engine these variants will fail
S> OTOH, Outlook or TB either can't do much against an active virus in
S> your system. It can auto-generate mail, get info from your Address
S> Book, etc. Happy99, anyone?
Happy99 only worked because of a vulnerability in O and OE. A virus
would have to be specifically designed to work with TB! e.g. address
book format and mapi calls. As TB! is a less well known program I
think we have less to fear but it is still possible.
--
Jamie Dainton
On Monday, January 22, 2001 at 8:12:54 AM
The Bat! 1.49
Windows 98 4.10 2222
mailto:[EMAIL PROTECTED]?subject=sendKey
Press any key to continue or any other key to quit...
--
______________________________________________________
Archives : <http://tbtech.thebat.dutaint.com>
Moderators : <mailto:[EMAIL PROTECTED]>
Unsubscribe: <mailto:[EMAIL PROTECTED]>
You are subscribed as : [email protected]
