Security Basics mailing list archives

RE: Images being pulled in Outlook 2003 even though don't download pictures is set?

From: "Spencer, Mark" <mspencer () evidentdata com>
Date: Tue, 24 Aug 2004 08:42:08 -0700

I got a significant number of responses to my original question ..
Thanks everyone!

The explanation I got was very consistent - the cid value refers to
content elsewhere in a multi-part message.  When I perform a "Save As"
to HTML from Outlook 2003 and view the output in a text editor, there is
no image data or other parts to the message, which caused my confusion.

-----Original Message-----
From: BugTraq [mailto:BugTraq () bnj com] 
Sent: Monday, August 23, 2004 1:09 PM
To: Spencer, Mark; security-basics () securityfocus com
Subject: RE: Images being pulled in Outlook 2003 even though don't
download pictures is set?

IIRC - the cid value refers to another content section within a
multi-part e-mail message. Images included within a multi-part message
will be displayed in Outlook 2003 no matter what the setting is, since
the setting affects images that are referenced outside of the message.

-----Original Message-----
From: Spencer, Mark [mailto:mspencer () evidentdata com]
Sent: Sunday, 22 August, 2004 09:36
To: security-basics () securityfocus com
Subject: Images being pulled in Outlook 2003 even though don't download
pictures is set?

I've been getting lots of spam with images being displayed, even though
my Outlook 2003 is set to not download pictures automatically.  Here's
what I think is the relevant code (minus < and >):

DIV align=center
FONT face=Arial size=2
IMG src="cid:kfhyepds_bfjhwcxn_dkiaarqo"
/FONT
/DIV
/BODY
/HTML

Any advice on how to deal with this?  How does that "cid: .." translate
into a legitimate IP address from which to pull an image?

Thanks!

------------------------------------------------------------------------
---
Computer Forensics Training at the InfoSec Institute. All of our class
sizes are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand
skills of a certified computer examiner, learn to recover trace data
left behind by fraud, theft, and cybercrime perpetrators. Discover the
source of computer crime and abuse so that it never happens again.

http://www.securityfocus.com/sponsor/InfoSecInstitute_security-basics_04
0817
------------------------------------------------------------------------
----

---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
----------------------------------------------------------------------------

Current thread:

Images being pulled in Outlook 2003 even though don't download pictures is set? Spencer, Mark (Aug 23)
- Re: Images being pulled in Outlook 2003 even though don't download pictures is set? Jordan Cole (stilist) (Aug 25)
- <Possible follow-ups>
- RE: Images being pulled in Outlook 2003 even though don't download pictures is set? CHRIS GRABENSTEIN (Aug 24)
- RE: Images being pulled in Outlook 2003 even though don't download pictures is set? Spencer, Mark (Aug 24)
- Re: Images being pulled in Outlook 2003 even though don't download pictures is set? Jason Coombs PivX Solutions (Aug 25)