ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Online business Toolkit

MS warns of script attacks for some Outlook users

Robert Vamosi CNet

Published: 29 Apr 2002 09:48 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

On April 26, Microsoft released a new security bulletin, MS02-021, for anyone running Microsoft Word as the default email editor for Microsoft Outlook 2000 and 2002. (The Word option is enabled or disabled by clicking Tools > Options > Mail Format.) Users editing or creating email in rich text or HTML formats with the Word option could be vulnerable to harmful scripts sent from malicious users.

How it works
Users who only read their email via Word are not vulnerable; HTML email in Outlook uses Internet Explorer's security settings and will not run malicious scripts sent via email. However, users who reply or forward email using Word are at risk because Word does not have script-blocking capabilities.

Prevention
A patch is available from Microsoft. Outlook 2002 users who have enabled the "Read HTML email as plain text" feature in Office XP SP1 will not need to apply this patch.

For all security-related news, including updates on the latest viruses, hacking exploits and patches, check out ZDNet UK's Viruses and Hacking News Section.

Have your say instantly, and see what others have said. Go to the Security forum.

Let the editors know what you think in the Mailroom.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
39 out of 92 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Online business


Company/Topic Alerts

Create a new alert from the list below:








Related Jobs

Application Support - FX Derivatives - SQL UNIX WINDOWS PERM LONDON

A well regarded IT related degree with good Fixed Income experience and a flexible outlook would be ideal. If you area keen problem solver with an ...

Internet Team Leader

To assist with the production of test plans, test scripts and the conduct of tests. Responsibility for maintaining the integrity of the networks ...

IT Manager - 35-40k - Reading

Microsoft Exchange / Outlook - Ramdata knowledge is preferable - Stock-It knowledge is preferable To receive further information please forward your ...

Sentry Posts Blog

The vPhone: Why Visa Should Go Mobile

The vPhone: Why Visa Should Go Mobile Author: Eric Everson, Founder MyMobiSafe.com With all of the success of Apple’s iPhone, there is a growing case to support a company like Visa... More

Post a comment

The Google Apple Merger: Fantasy or Fu...

The Google Apple Merger: Fantasy or Future? Author: Eric Everson, Founder MyMobiSafe.com Market research suggests that Microsoft controls upwards of 90% of the respective computer-based... More

1 comment

Trades Unions against ID Cards

The Trades Union Congress (TUC) has backed up airport workers protesting against ID cards, the Financial Times reports. In a letter to Home Secretary Jacqui Smith, the TUC said it... More

Post a comment

Featured Talkback

I wonder, who needs .asia domain? I cannot imagine, what would be useful for Microsoft.asia? Toyota.asia? Then let's register .europe (if .eu is too short). Or perhaps Microsoft.southamerica, Dell.australiaandnewzealand, Coca-Cola.africa... Sound funny? Then why not just use the global and country domains? Or perhaps it is time to drop the domains at all?

By: LadyRoot

Read full story:
Businesses advised to register .asia domains