Spacer Sidebar Directory Map

The Training Book, the handbook for trainers

The Training Book, the handbook for trainers

 

ITrain - International Association of Information Technology Trainers

MS Exchange Leaks Email

Security hole needs patching -- fast!

ITINFO Sponsor

Certification Required.

Trainers need certification to get ahead. Professionalization and certification open doors to greater training opportunities and higher earnings.

The first step to PTT certification is to successfully complete the Train the Trainer Advanced Seminar & Conference. This 2-day event will hone your training skills beyond what you may have imagined possible. And it makes you eligible to apply for Professional Technical Trainer certification.

The seminars are offered at least once each month. Register now, get professionalized, and get ahead.

Seminar details
Certification details

Internet Poll
Have you attended a seminar via e-learning?
yes
no

poll archive

Microsoft Exchange 2000 Security Hole

by Dave Murphy
ISSN 1535-3613

Dave Murphy, DGL President & ITrain founder Microsoft revealed a security hole in its Exchange 2000 mail server that allows crackers to target corporate email resources, including accessing, modifying, and deleting individual employee email messages. User's of Microsoft Outlook Web Access, the program grants email access via a web browser are at risk.

To exploit the flaw, an attacker would have to create a special text attachment that includes HTML code and scripts. While the attachment would appear to be a text file to the recipient, once opened, the script would automatically execute without notification. Windows normally notifies users that a script has been included in an incoming email message; however, in this case, Windows won't flag the user.

Microsoft has released a patch that covers this security hole.

Call for Comments

What do you think? Leave your comments on the message center

References

Microsoft
Message Center

Subscribe to ITINFO.
Receive computing and Internet news & tips
by subscribing to the ITINFO information service.
Type your Internet email address in the form, and click "Subscribe."
Email Address:

Damar Group, Ltd. helps business use technology.

ITINFO is again accepting sponsors. Sponsor messages are included in ITINFO's email newsletter and are permanently posted to DGL's website and online reference areas.

ITINFO is an electronic publication of Damar Group, Ltd., publisher of Training Express computer learning guides. Comments and submissions to info@dgl.com.

Previous issues are on our website at http://dgl.com/itinfo/.

updated June 7, 2001
http://dgl.com/itinfo/2001/it010607.html

Return to DGL homepage
Copyright © 2001, Damar Group, Ltd., All Rights Reserved