[CrackMonkey] Re: SANS FLASH For Outlook and Outlook Express Users; Please Fix This Before You Go Home Today

Aaron Lehmann aaronl at vitelus.com
Fri Jul 21 19:55:00 PDT 2000


Oops, I can't believe I accidentally CC'd this to SANS.

On Sat, 22 Jul 2000, Aaron Lehmann wrote:

> Spamming virus alerts? That's fucked up.
> 
> On Fri, 21 Jul 2000, Bryan Fullerton wrote:
> 
> > I'd like to suggest, as strongly as I can, that SANS, Microsoft and the FBI
> > send out email earlier in the day if they want me to do things before I leave
> > work.
> > 
> > Received: from server1.SANS.ORG (server1.sans.org [167.216.133.33])
> >         by home.samurai.com (Postfix) with ESMTP id 4FB2C131A5
> >         for <bryanf at samurai.com>; Fri, 21 Jul 2000 19:37:56 -0400 (EDT)
> > 
> > Bryan
> > 
> > On Fri, Jul 21, 2000 at 05:37:03PM -0600, The SANS Institute <sans at sans.org> wrote:
> > > To: Bryan Fullerton (SD312383)
> > > 
> > > Please Fix This Before You Go Home Today.
> > > And if you have gone home, go back to the office and fix it.
> > > 
> > > Outlook and Outlook Express share a vulnerability that allows attackers
> > > to run programs of their choice on your computer and all you have to do
> > > is download email from the server. You don't have to open it or read
> > > it.
> > > 
> > > Microsoft posted a patch that eliminates this vulnerability at
> > > http://www.microsoft.com/technet/security/bulletin/MS00-043.asp.
> > > 
> > > SANS, Microsoft, and the FBI all suggest, as strongly as we can, that
> > > you install this patch before leaving work today.
> > > 
> > > Please go to the page and, if you are running an affected version (true
> > > unless you have recently installed IE 5.01 Service Pack 1 or IE 5.5),
> > > download the patch
> > > 
> > > 
> > > 			..AP
> > 
> > -- 
> > Bryan Fullerton               http://bryanfullerton.com/
> > Core Competence
> > Samurai Consulting          | "Windows is the bastard child of Meatloaf.
> > Can you feel the Ohmu call? | I hate both of 'em." - Dana-Christene Umanetz
> > 
> > 
> > 
> > _______________________________________________
> > CrackMonkey: Non-sequitur arguments and ad-hominem personal attacks
> > http://crackmonkey.org/mailman/listinfo/crackmonkey
> > 
> 
> 






More information about the Crackmonkey mailing list