[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] How big is the danger of IE?



On Thu, July 8, 2004 11:09 am, Larry Seltzer said:
>>> Outlook and Outlook Express use IE to display HTML mails, which make
>>> some of the IE bugs exploitable (I don't know if it's the case for this
>>> one).
>
> In general this isn't true for any remotely recent copy of either program.
> Both run HTML mail in the restricted zone which disabled all script,
> ActiveX and anything else dangerous

I thought one of the recent problems was that you could convince IE (and
IE-reliant software) to run code in an arbitrary zone.

-Eric

--
arctic bears - affordable email and name services @yourdomain.com
http://www.arcticbears.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html