[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [Full-Disclosure] How big is the danger of IE?
- To: full-disclosure@xxxxxxxxxxxxxxxx
- Subject: RE: [Full-Disclosure] How big is the danger of IE?
- From: "Eric Paynter" <eric@xxxxxxxxxxxxxxx>
- Date: Thu, 8 Jul 2004 11:49:59 -0700 (PDT)
On Thu, July 8, 2004 11:09 am, Larry Seltzer said:
>>> Outlook and Outlook Express use IE to display HTML mails, which make
>>> some of the IE bugs exploitable (I don't know if it's the case for this
>>> one).
>
> In general this isn't true for any remotely recent copy of either program.
> Both run HTML mail in the restricted zone which disabled all script,
> ActiveX and anything else dangerous
I thought one of the recent problems was that you could convince IE (and
IE-reliant software) to run code in an arbitrary zone.
-Eric
--
arctic bears - affordable email and name services @yourdomain.com
http://www.arcticbears.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html