Microsoft security bulletin

Pete Russell pete at EATATHOME.COM.AU
Wed Nov 12 02:33:29 GMT 2003


We cant afford sophos, we use clamav - as i said, the attchment is already
removed by the smtp proxy at the firewall.

Pete

-----Original Message-----
From: MailScanner mailing list [mailto:MAILSCANNER at JISCMAIL.AC.UK]On
Behalf Of Mike Kercher
Sent: Wednesday, 12 November 2003 1:24 PM
To: MAILSCANNER at JISCMAIL.AC.UK
Subject: Re: Microsoft security bulletin


Sophos catches these every time!

Mike


> -----Original Message-----
> From: MailScanner mailing list
> [mailto:MAILSCANNER at JISCMAIL.AC.UK] On Behalf Of Pete Russell
> Sent: Tuesday, November 11, 2003 8:22 PM
> To: MAILSCANNER at JISCMAIL.AC.UK
> Subject: Microsoft security bulletin
>
> We are getting the MS Security Bulletin virus/email that is
> totally faked and has a virus attched to it (quite common now
> i think) and it passes straight through with a score of 0.72
>
> IS there a trick to catching these? The attchment is killed
> by our watchguard firewall, but would nice to stop the
> message as well, drives the helpdesk mad with questions about
> applying MS patches.
>
> Thanks
>
> From: Microsoft Security Bulletin <jommtgcxuuhcmc at bulletin.com>
> Subject: Net Critical Upgrade
> To: MS Corporation Customer <yzal at bulletin.com>
> Message-id: <0HO700GIUUQ5HL at mta07bw.email.bigpond.com>
> MIME-version: 1.0
> Content-type: multipart/mixed;
> boundary="Boundary_(ID_x24frAoH9mSYK9L5U4ntig)"
>
> 0.00 HTML_MESSAGE HTML included in message
> 0.72 MIME_HTML_NO_CHARSET Message text in HTML without charset
>



More information about the MailScanner mailing list