Serious security problem
- To: perennials@lorien.mallorn.com
- Subject: Serious security problem
- From: "* P* L* <lindsey@lorien.mallorn.com>
- Date: Mon, 27 Jul 1998 22:25:27 -0500 (CDT)
Hi folks,
Normally I don't post security-related information to such a
wide forum, but I feel that this is serious and important
enough to warrant some dedicated space on the list.
For those of you running Microsoft Outlook Express (v4.72.2106.4
& v4.72.3110.1) or Netscape Mail (v4.05 & 4.5b1), an extremely
serious security problem has been detected in your mail programs.
It has been discovered that messages can be configured by crackers
to run programs on user's systems via attachments. The attachment
doesn't even have to be opened -- simply downloading it is enough to
cause problems. Through this exploit virii can be installed, files can
be deleted from your system, or your passwords can be sent to another
site.
Netscape has refused to release a patch, but says that version
4.06 of their Communicator suite will solve the problem. If you
use Netscape Mail, look for a new version in the next few weeks.
Upgrade as soon as it's available.
Microsoft currently has a patch available for Outlook Express at
http://www.microsoft.com/security/bulletins/ms98-008.htm
More information about the exploit is available at
http://ntbugtraq.ntadvice.com/archives/default.asp
Please, pass this information on to friends and acquaintances.
This is a very serious problem and needs to be remedied immediately.
Feel free to send this message around, but I ask that you
keep it in its entirety for continuity's sake.
Thanks,
Chris
----------------------------------------------------------------------
Christopher Lindsey
President/CEO, Mallorn Computing
---------------------------------------------------------------------
To sign-off this list, send email to majordomo@mallorn.com with the
message text UNSUBSCRIBE PERENNIALS
