Is MS vulnerable to this Unicode trick?
Denis.Beauchemin at usherbrooke.ca
Fri May 13 14:45:05 IST 2011
I just read something that makes me wonder if MS can detect those Unicode names as executables?
We’ve been blocking EXE, BAT and many other executables for a long time with MS, just based on the file name. I didn’t want to use the file command because we encouraged people to rename offending attachments before sending them.
Should I start using the file command just to be on the safe side?
Architecte Technologique - Section Infrastructure des serveurs
Service des technologies de l’information (S.T.I.)
Université de Sherbrooke
More information about the MailScanner