Archive for March, 2001

This Microsoft Security Bulletin gives you info on a much needed fix if you are using MS IE 5.2, 5.5 or Outlook Express.

“Technical description:
Because HTML e-mails are simply web pages, IE can render them and open binary attachments in a way that is appropriate to their MIME types. However, a flaw exists in the type of processing that is specified for certain unusual MIME types. If an attacker created an HTML e-mail containing an executable attachment, then modified the MIME header information to specify that the attachment was one of the unusual MIME types that IE handles incorrectly, IE would launch the attachment automatically when it rendered the e-mail.An attacker could use this vulnerability in either of two scenarios. She could host an affected HTML e-mail on a web site and try to persuade another user to visit it, at which point script on a web page could open the mail and initiate the executable. Alternatively, she could send the HTML mail directly to the user. In either case, the executable attachment, if it ran, would be limited only by user’s permissions on the system. “

You don’t have to even open the offending email. Just previewing it can run the code.
Grab the update HERE Note: IE 5.1 with Service Pack 2 does NOT have this Security Hole.

CNET has a good review of Microsofts newest OS in the works.

Good to see this on Slashdot this morning.

“A city ordinance intended to keep children from playing violent video games in arcades and stores suffered a potentially fatal setback today after a federal appeals court ruled the measure cannot be enforced.The unanimous decision by the 7th U.S. Circuit Court of Appeals could pave the way for a U.S. Supreme Court review of the arcade ordinance, the first of its kind in the nation.”

Here’s a link to the Starnews article and here’s a link to the courts decision.

CNN has an interesting article on how our representatives view our email communication to them. Spam ?