the statement that "In any event, users who don't accept executables (files ending in the suffix .exe) from strangers are safe from the Trojan," is completely untrue. malicious scripts could be executed via windows scripting host (*.vbs or *.wsh files) thereby forcing virtually any command to be run...
av
[ more ]