Subscribe to Windows IT Pro

 

Get Newsletters

  • Get the Latest News
  • Product Updates
  • Helpful Tricks
  • Productivity Tips

Subscribe Now!

May 24, 2000 12:00 AM

Outlook Patched After Recent Viruses

C. Thi Nguyen
Windows IT Pro
InstantDoc ID #8830
Rating: (0)

Microsoft plans to release an Outlook security patch in the wake of the devastation wrought by the Loveletter (aka Love Bug) virus, a Visual Basic (VB) Script bug that propagated by exploiting Outlook's address book feature to pass itself along as an email attachment. This patch makes it harder for viruses such as Loveletter to gain access to Outlook's address book. The security patch prevents an Outlook user from opening any attachment that contains Level 1 Security Files (attachments with executable code), including .exe files, .com files, .bat files, .vbs files, and .js files or any links that might link to executable code including .url files, .isn files, .lnk files, and .pif files. The patch also warns a user accessing Level 2 Security Files (attachments with .zip or other archive files). The patch pops up a window that prompts you for positive input when an application attempts to access the Outlook address book. The message reads: An external application is trying to access e-mail addresses you have stored in Outlook. Do you want to allow this? This requirement prevents simple scripts, such as Loveletter, from opening your address book without your knowledge and using the email addresses there. The prompt asks you to specify a length of time that you'll allow automated access to the address book. You can choose 1, 2, 5, or 10 minutes or you can refuse access. The original suggestion for this patch came, not from a techie, but from US Congressman Anthony Weiner of New York in a US Senate Subcommittee hearing in the wake of Loveletter. The patch also bumps up Outlook's default security from Internet Zone to Restricted Zone. Of course, in disabling automated access to address book functionality, Microsoft's fix interferes with the functioning of many third-party products that depend on such access. The fix affects products from Novell, Palm, Accountmate, Great Plains Software, Chapura, FileNET, Instinctive, Micro Eye, Motiva, Paragan Software, Pumatech, Rim, Slipstick Systems, and others. This patch marks the first time that Microsoft has had to remove a feature to respond to a security crisis. Microsoft representatives called this patch unprecedented. "In today's growing environment of cyberterrorism, Microsoft believes that stronger security options should be built into Outlook." Patches are available for Outlook 2000 and Outlook 98. For more information and the patch itself, see Microsoft's Web site. According to a Microsoft spokesperson, the patch will be available sometime during the week ending May 26.

Related Content:

ARTICLE TOOLS


Want to use this article? Click here for options!

Comments
Add A Comment
  • Anonymous User
    8 years ago
    Dec 20, 2004

    Well, since no one else pointed this out, if you search the MS KB, you'll find a detailed article about how to edit the registry and allow .mdb or .exe files to be saved or opened from Outlook. I believe the information is here: http://support.microsoft.com/default.aspx?scid=kb;en-us;829982

    Look Todd, it's me!

  • Jesus Bilbao
    8 years ago
    Jul 08, 2004

    Your Comments (required):Thanks for the info. It answered my question. I use Chapura, can you tell me how to avoid the message or remove the patch ?. Thanks again

  • Todd Hobdey
    12 years ago
    Jun 19, 2000

    I find myself quite upset after applying the Outlook security patch - inadvertently, I might add. As a routine part of my job, I frequently send and receive Access (.mdb) files and self-extracting zip files. Now I flat out can't receive them. I'm not an idiot and am perfectly capable of determining on my own whether or not I wish to receive these files, but Microsoft has removed any and all option.

    Not only that, but they've seen fit to make this patch non-removable. I've gone as far as to re-install Office, but the darn thing's still with me. I just recently reformatted my hard drive and I don't feel compelled to go through that again.

    I, as our company's primary Microsoft proponent, have been strongly pushing our upper management to switch our corporate email client from Eudora to Outlook, but after this patch I think I may be me that switches from Outlook to Eudora.

  • Sue Mosher
    12 years ago
    May 30, 2000

    "The original suggestion for this patch came, not from a techie, but from US Congressman Anthony Weiner of New York in a US Senate Subcommittee hearing in the wake of Loveletter."

    In fact, many "techies" made the suggestion of object model protection for Outlook long before any congressional hearings. I don't see why Cong. Weiner should be credited.

    Furthermore, the object model guard feature affects not just address book access but also any functions that send messages automatically. This means the update breaks many significant built-in features such as Net Folders and
    mail merge to e-mail via Microsoft Word.

    Your article lists companies whose products will be affected. This is not quite accurate. It would be better to say that these companies' products "may" be affected. My company, like the others listed, will not be able to
    say exactly what will be affected until Microsoft releases the final version of this update.

  • Mike Walsh
    12 years ago
    May 25, 2000

    The headline to this article is misleading.

    I knew that Microsoft *planned* to release a patch this week. This article headline made me think that this patch had now been released.

    It would have saved all of us a bit of time if the headline would be "Imminent Release of Outlook patch after recent viruses" or similar until such time as the patch is indeed released at which time you can make that fact clear in your header e.g. "Outlook patch now released"

You must log on before posting a comment.

Are you a new visitor? Register Here

advertisement

advertisement

White Papers

Get your Windows 7 deployment off to the right start by implementing PC lockdown. A locked-down environment is easier and cheaper to support since users are less likely to make unnecessary changes to the core system configuration - read more here!

Essential Guides

Is your iSCSI "lossy"? The reality is that most off-the-shelf Ethernet hardware deployed for iSCSI can lose packets, resulting in slow performance or application downtime. Learn how to assess your current iSCSI infrastructure and engineer an advanced iSCSI SAN infrastructure.

Web Seminars

What's the best way to keep your network safe from malware? In this web seminar, security expert Greg Shields suggests an alternative method to the traditional blacklisting approach that is common with anti-virus and anti-malware solutions.

eLearning Series

We bring the experts direct to you to share their real-world perspective and expertise. During each event, three sessions stream in real time, so you can learn, ask questions, and get solutions.
Upcoming event: Getting the Most with Exchange 2010 with Paul Robichaux

Subscribe to Windows IT Pro!

Cloud IT Pro DevProConnections Left-Brain Mobile Dev Pro SharePoint Pro SQL Server Pro SuperSite for Windows Windows IT Pro

© 2012 Penton Media, Inc.

Home About Us Advertise Customer Service Privacy Statement Subscribe/Renew Terms Of Use

Windows is a trademark of the Microsoft group of companies. Windows IT Pro is used by Penton Media Inc. under license from owner.