[dba-Tech] Outlook question

Susan Harkins ssharkins at gmail.com
Fri Dec 11 15:53:26 CST 2009 

> Note the words "current" and "latest patches".   This  and the  comment 
> below about "a
> decent security program"  both assume that you are only going to get 
> emails containing
> known exploits which are covered by AV definition and/or patches.  It 
> offers no protection
> against the next attack coming up.   Bottom line is that when the preview 
> pane is used,  the
> email *is* effectively "opened".  If it contains HTML, this will be 
> rendered by the Internet
> Explorer engine and you will be vulnerable to new attacks that come up.

=======Well, I'm not the expert, but I'm not sure I agree -- if the hole has 
been patched, what "next attack" are you talking about? Wouldn't any new 
attacks need a new, as yet, unpatched vulnerability?

Susan H.

More information about the dba-Tech mailing list