Re: BCC email virus
From: Meritt James (meritt_james@bah.com)Date: 01/30/02
- Previous message: Kevin Brown: "RE: Feedback on BlackICE..."
- Maybe in reply to: Chris Coakley: "BCC email virus"
- Next in thread: John Daniele: "Re: BCC email virus"
- Next in thread: Marlon Ngantung: "RE: I've been hurt by an e-mail virus ! What virus is it ?"
- Reply: John Daniele: "Re: BCC email virus"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 30 Jan 2002 09:04:24 -0500 From: "Meritt James" <meritt_james@bah.com> To: John Daniele <johnd@tsintel.com>
So why not simply disable the association to interpreters (including
VBS, of course) and modifying the configuration of your whatever reader
not to do that?
John Daniele wrote:
>
> > Why just don't run emailed executables?
>
> Because for as long as you are running an email client that interprets
> vb/java/lotus/*scripting code, you are at risk. There have been cases
> where executable code is automatically run simply by clicking on the
> message as opposed to running it manually. I've also seen one one case
> where the executable was executed accidently by buggy code implemented
> as a part of the email client's export-attachment function.
>
> ----------------------------------
> John Daniele
> Technical Security & Intelligence
> Toronto, ON
> Voice: (416) 605-2041
> Email: johnd@tsintel.com
> Web: http://www.tsintel.com
> ----------------------------------
-- James W. Meritt CISSP, CISA Booz | Allen | Hamilton phone: (410) 684-6566
- Previous message: Kevin Brown: "RE: Feedback on BlackICE..."
- Maybe in reply to: Chris Coakley: "BCC email virus"
- Next in thread: John Daniele: "Re: BCC email virus"
- Next in thread: Marlon Ngantung: "RE: I've been hurt by an e-mail virus ! What virus is it ?"
- Reply: John Daniele: "Re: BCC email virus"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
