[3104] in WWW Security List Archive
Re: New and destructive word macro virus
daemon@ATHENA.MIT.EDU (David Kennedy)
Fri Sep 27 12:04:24 1996
Date: 27 Sep 96 10:30:38 EDT
From: David Kennedy <76702.3557@compuserve.com>
To: "INTERNET:hallam@ai.mit.edu" <hallam@ai.mit.edu>,
WWW Security List <WWW-SECURITY@ns2.rutgers.edu>
Errors-To: owner-www-security@ns2.rutgers.edu
>>Macro viruses and viruses in general are entirely inappropriate
>>for this list which was set up to discuss web security
>>protocols.
I agree this thread is off topic, however I don't buy the above comment
"entirely."
Has anyone checked:
MS Word can be used to create HTML and browse the web if one installs MS's
Internet Assistant.
If Stupid@foo.net uses an infected version of Word Internet Assist to creat an
HTML document and posts it to a Web Server, and Innocent@foo.net uses Word
Internet Assist to browse and read that HTML page, will Innocent's Normal.DOT
become infected?
I don't _think_ so, but has anyone actually checked?
Dave Kennedy [CISSP] Research Team Chief, National Computer Security Assoc.
