On Mon, 11 Feb 2002, Doc wrote:
Yet another Microsoft Outlook exploit is on the
loose... and this time the
arrogance of the recommended solution is breathtaking. The problem is the
built-in support for UUENCODED text within the body of a message. Prudent
programmers will use a starting pattern such as
If people are still using MS Outlook inspite of all the viruses and crap
that have plagued that pathetic piece of shit in the past few years then
they not only deserve whatever damage gets done to their system via such
vehicles but they shouldn't be allowed to use e-mail at all since they
only end up contributing to the greater problem by running it!
Until the govt performs a door-to-door search for all the script
kiddies, whatever is the most-popular-and-prevalent-platform will be
the target for such attacks. You may think that Pine has no way of
being exploited (is Mark Crispin on this list?), but wait'll it's
the only thing we're using...
Seriously, Outlook isn't the source of the stated problems; half-assed,
self-taught, sycophantic sysadmins who can't secure their systems are!