News

Outlook Express Feature Could Let Viruses Slip Past Virus Scanners, Firewalls

A security firm discovered that users who enable a rarely used feature in Microsoft's Outlook Express client could allow viruses, trojans and worms to slip past the usual array of perimeter security defenses, including gateway virus scanners, SMTP-checking firewalls and content filters.

Outlook Express has a feature that allows users with slow connections to download large messages in pieces so they can begin reading the message without waiting for the entire file to download. Users can enable the feature with a few clicks in the Outlook Express Tools menu.

This feature "allows anyone to bypass most of the security restrictions imposed on e-mail messages, due to the fact that messages are spliced into smaller segments that will not be detected by virus scanners or other content testing mechanisms," according to a bulletin on the Web site of Beyond Security Ltd., the firm that reported the vulnerability.

The feature, called "message fragmentation and re-assembly," allows attackers to separate virus signatures so they are only reassembled at the client.

Several third-party vendors acknowledged that their products are vulnerable to the Outlook Express problem and have created patches, including Trend Micro and GFI.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Performing a Storage Refresh on Windows Server 2016, Part 1

    To spruce up some aging lab hardware, Brien decided to make the jump to all-flash storage. Here's a walk-through of the first half of the process.

  • Datacenters Are Cooling Down as Buildouts Heat Up

    Tech giants Google, Apple and others are expanding their datacenter footprints at a rapid rate, and it's pushing the industry to find better ways to power all that infrastructure.

  • Vendors Issue Patches for Linux Container Runtime Flaw Enabling Host Attacks

    This week, the National Institute of Standards and Technology (NIST) described a high-risk security vulnerability (CVE-2019-5736) for organizations using containers that could lead to compromised host systems.

  • Windows 10 Version 1809 Users May Get Visual Studio Crashes

    Microsoft on Friday issued an advisory for Windows 10 version 1809 users about possible Visual Studio crashes.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.