Defusing the FUD

By Roger on October 1, 2004 1:46 PM |

Microsoft Monitor is a weblog by Juniper research group. Today's article attacks the FUD surrounding the JPEG vulnerability.

Good article all in all. The author praises Microsoft for limiting vulnerability by blocking the automatic display of images in Outlook 2003. This is good, but I do believe images included in the message itself (rather than just links to a website image) are displayed. Of course they have the chance to be scanned by SMTP antivirus.

Another important point of the article is to double check your antivirus. You really should be scanning all files. If you're scanning program files only, you need to add jpg and jpeg to that file extension list. There have also been reports that tiff uses the same interpreter. You're really better off scanning all files. I think most companies have caught on to that.

Categories

Microsoft

About this Entry

This page contains a single entry by Roger published on October 1, 2004 1:46 PM.

Ultimate Security Breakdown, (not really) was the previous entry in this blog.

False Authority Syndrome is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search