On Thu, 2002-07-18 at 15:36, Kuo, Jimmy wrote: > >Outlook can execute viruses if the preview pane is enabled, however. > > True. > > >(NCD got hit pretty hard by the "ILoveYou" virus due to this little > >"feature".) > > False. The ILoveYou virus (LoveLetter) does that take advantage of this > exploit. It took advantage of hidden extensions to make people think that a > file with the double extension of .txt.vbs was a .txt. So, a user was > enticed to click on it thinking it was a text file when in fact it was a > .VBS file. All this at a time when .vbs files were not normally scanned. The preview panel would run VBS scripts automatically. May not be true not, but it was then.
This archive was generated by hypermail 2b30 : Thu Jul 18 2002 - 23:58:34 PDT