Klarinet Archive - Posting 001337.txt from 1998/07

From: "Mark Charette" <charette@-----.org>
Subj: [kl] Please read - E-Mail security hole - I checked personally
Date: Wed, 29 Jul 1998 21:35:28 -0400

It was reported in my newspaper today that there is a bug in Netscape,
Outlook Express, and Outlook 98 that would allow an e-mail message to
possibly corrupt your system. This is not my normal "don't open attachments
with a .exe extension" message, but a real hole. I just downloaded a patch
for my system.

Microsoft has put a patch in place for Outlook Express at
http://windowsupdate.microsoft.com/default.htm?page=productupdates

A work-around for Netscape users is at:
http://www.netscape.com/products/security/resources/bugs/longfile.html?hom07
prt1

This is a real one, folks. No one (to either Netscape's or MSFT's knowledge)
has exploited this hole yet - but you just know _someone_ will RSN.
----
Mark Charette@-----.org
Webmaster, http://www.sneezy.org/clarinet
All-around good guy and devil-may-care flying fool.
"There can be no freedom without discipline." - Nadia Boulanger

-------------------------------------------------------------------------