SANS FLASH For Outlook and Outlook Express Users; Please Fix This Before You Go Home Today

[William Knowles <wk () C4I ORG>]

Please Fix This Before You Go Home Today.
And if you have gone home, go back to the office and fix it.

[OK, and if your boss hasn't called you in over the weekend to fix it,
Do it NOW! -WK]

Outlook and Outlook Express share a vulnerability that allows attackers
to run programs of their choice on your computer and all you have to do
is download email from the server. You don't have to open it or read
it.

Microsoft posted a patch that eliminates this vulnerability at
http://www.microsoft.com/technet/security/bulletin/MS00-043.asp.

SANS, Microsoft, and the FBI all suggest, as strongly as we can, that
you install this patch before leaving work today.

Please go to the page and, if you are running an affected version (true
unless you have recently installed IE 5.01 Service Pack 1 or IE 5.5),
download the patch

ISN is hosted by SecurityFocus.com
---
To unsubscribe email LISTSERV () SecurityFocus com with a message body of
"SIGNOFF ISN".