On Mon, 11 Mar 2002, Matthew Cline wrote: > <iframe src=cid:V34tfyBO41605h49r height=0 width=0> > </iframe> > > Since "V34tfyBO41605h49r" is the sound file, a mail reader with better HTML > rendering would have created a frame with the sound file as it's source, thus > automatically playing it. No need to click an attachment; just look at that > message and it starts blaring out it's message at you. > > We should probably check for frames and iframes that have a height or width > of zero, since invisible frames are probably up to no good.
Did you play it? (or at least look at it more closely) Is it really a sound file? Some viruses lately are wandering around with different filenames and content-types. foo.exe and audio/wav, that sort of thing. (I'll bet that /<i?frame /i itself is a decent spam indicator ...) -- Charlie Watts [EMAIL PROTECTED] Frontier Internet, Inc. http://www.frontier.net/ _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
