OT: more IE6 vulnerabilities
mailscanner at ecs.soton.ac.uk
Thu Jan 29 08:56:23 GMT 2004
I recommend 1 change to the filename.rules.conf file
Find the "deny" rule protecting against filenames ending in CLSID's.
Remove the "$" from the expression.
This will be in 4.26.6.
At 23:20 28/01/2004, you wrote:
>Every time I read articles like this one, I get a bad taste in my mouth.
>Lovely. Then I think about Microsoft's "Trusted Computing" initiative,
>and the sour taste gets worse. How can a company that has more money
>than most countries leave its users open to crap like this? It's bad
>enough that they seem to build security holes into their products from
>the beginning, then never seem to bother testing anything before
>I particularly love the part where the writer says, "We also have reason
>to believe there is no fix." This gets better all the time. Now we can
>not only be fooled into believing that we're on our bank's website, but
>we can acquire a worm while they're robbing us blind. Thanks, Microsoft.
>I'll be using Mozilla exclusively from now on. Long live open source.
MailScanner thanks transtec Computers for their support
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
More information about the MailScanner