, 2004-07-29
As if the common use of "web bugs" inside spam was not enough, companies are using new techniques to watch and track the private emails you read, forward, print, and more.
Expand all |
Post comment
Email Privacy is Lost
2005-12-14
Anonymous (1 replies)
Anonymous (1 replies)
Just FYI, you *can* block e-mail from loading an IFRAME, even with HTML rendering, in Outlook Express and Outlook (all versions).
If you set Outlook (Express) to open e-mail in "Restricted Sites" (default in Outlook 2000 and later, and Outlook Express 6.0 SP1), frames are disabled automatically.
This behavior occurs if MS02-023 or a later IE cumulative patch has been applied, as documented in that bulletin (http://www.microsoft.com/technet/security/bulletin/ms02-023
.mspx), and subsequently included in IE 6.0 SP1.
So, if you are using any combination of Outlook/Outlook Express with e-mail in Restricted Sites, and IE 5.01, IE 5.5, or IE 6.0 with MS02-023 or SP1 applied, this attack vector is already completely blocked.
You can quit holding your breath, in case you were wondering. :-)
Food For Thought,
Matt Murphy
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/258/27757#27757