| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <86144ED6CE5B004DA23E1EAC0B569B586C36@isabella.herefordshire.gov.uk> From: prandal at herefordshire.gov.uk (Randal, Phil) Subject: How big is the danger of IE? full-disclosure-admin@...ts.netsys.com wrote: > On Thu, July 8, 2004 8:07 am, Sapheriel said: >> i didn't know IE also displays e-mails and power point files. > > It doesn't. But the IE rendering engine (read: dlls) are used > by most MS programs to render HTML, which can be embedded > into almost any document type. Pretty much any IE exploit > will work in any of these programs as well. Isn't the whole > "integrated Microsoft suite" a wonderful concept? > > -Eric As those of us who upgraded to IE6SP1 without installing the corresponding Outlook Express (mea culpa!) found to our chagrin when MS04-013 came out, just because you don't use something doesn't mean it's not a security risk. Cheers, Phil ---- Phil Randal Network Engineer Herefordshire Council Hereford, UK
Powered by blists - more mailing lists