On Tue, 18 Sep 2001, Austad, Jay wrote: > 4. Via the eml vulnerability in IE versions prior to 6.0 (very few have > upgraded to 6.0). If a webserver has Nimba, it will append a nice piece of > javascript to the end of every web page served which will open an EML file > which will infect the machine viewing the web page. There is no dialog, it > just opens. This bug was discovered by George Guninski about a month or so > ago, and is apparently fixed in IE 6.0. So IE users can get the virus just > by visiting a page on an infected IIS server. Anyone know if the newest critical updates fix this? (VNC'ing to boxes at home to make sure they are all up-to-date.. heh) -- Nate Carlson <natecars at real-time.com> | Phone : (952)943-8700 http://www.real-time.com | Fax : (952)943-8500