RE: Images being pulled in Outlook 2003 even though don't download pictures is set?

From: CHRIS GRABENSTEIN (CGRABENSTEIN_at_lfcc.edu)
Date: 08/23/04

Next message: token: "Re: educating rDNS violators"

Previous message: Ansgar -59cobalt- Wiechers: "Re: Windows 2000 Administrator lockout"
Maybe in reply to: Spencer, Mark: "Images being pulled in Outlook 2003 even though don't download pictures is set?"
Next in thread: Spencer, Mark: "RE: Images being pulled in Outlook 2003 even though don't download pictures is set?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 23 Aug 2004 15:20:39 -0400
To: <security-basics@securityfocus.com>

The reference after cid: refers to an image embedded in the email itself.
The image arrives as part of the email rather than being pulled from a remote
server.

-----Original Message-----
From: Spencer, Mark [mailto:mspencer@evidentdata.com]
Sent: Sunday, August 22, 2004 12:36 PM
To: security-basics@securityfocus.com
Subject: Images being pulled in Outlook 2003 even though don't download
pictures is set?

I've been getting lots of spam with images being displayed, even though my
Outlook 2003 is set to not download pictures automatically. Here's what I
think is the relevant code (minus < and >):

DIV align=center
FONT face=Arial size=2
IMG src="cid:kfhyepds_bfjhwcxn_dkiaarqo"
/FONT
/DIV
/BODY
/HTML

Any advice on how to deal with this? How does that "cid: .." translate into
a legitimate IP address from which to pull an image?

Thanks!

---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Gain the in-demand skills of a certified
computer examiner, learn to recover trace data left behind by fraud, theft,
and cybercrime perpetrators. Discover the source of computer crime and abuse
so that it never happens again.

http://www.securityfocus.com/sponsor/InfoSecInstitute_security-basics_040817
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
----------------------------------------------------------------------------

Next message: token: "Re: educating rDNS violators"

Previous message: Ansgar -59cobalt- Wiechers: "Re: Windows 2000 Administrator lockout"
Maybe in reply to: Spencer, Mark: "Images being pulled in Outlook 2003 even though don't download pictures is set?"
Next in thread: Spencer, Mark: "RE: Images being pulled in Outlook 2003 even though don't download pictures is set?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: unable to join domain from dmz
... >> installing another server in the DMZ as a Backup Domain Controller. ... are guaranteed to be 12 students or less to facilitate one-on-one ... interaction with one of our expert instructors. ...
(Security-Basics)
RE: Definitions
... Automated Patch Management usually refers to a product such as Microsoft ... sizes are guaranteed to be 12 students or less to facilitate one-on-one ... interaction with one of our expert instructors. ...
(Security-Basics)