Re: MICROSOFT SECURITY FLAW?

[Russ.Cooper () RC ON CA (Russ)]

Simply modifying your Outlook (98/2000/OE 5.0) Security setting to
"Restricted Sites" shuts this down clean. The ActiveX control cannot be
invoked and the user does not have an option to by-pass the security (and no
files, .chm or .exe, are copied down).

Microsoft's "Outlook Email Security Update" will do this automatically when
its released and applied. Meanwhile, anyone who hasn't already realized
their Outlook Security should be set to "Restricted Sites" deserves more
than an oolala and a joke...;-]

Cheers,
Russ - NTBugtraq Editor
"dot-age" (as in "we're in the dot-age") = senility (source Webster's)