Two serious security holes in two weeks is a very bad thing, especially because the second one sounds a lot like crying wolf. Last week’s hole had security experts saying, “This is pretty bad, but it could be worse.” From the sound of things, this week’s is worse.
A flaw in how Microsoft Outlook and Microsoft Exchange handle enriched text can be used to hack computers simply by sending a malformed e-mail message. Apparently all you need to do is receive one of these messages and you’re hacked. The hole hasn’t been exploited yet and Microsoft already released a patch, so visit www.windowsupdate.com and install it ASAP.
Lots of people are quite happy with Outlook, but to me it’s a bloated, overly complicated and insecure piece of shit. I use Thunderbird. Eudora is also nice, but it won’t translate my spam mail into Swedish Chef English like Thunderbird.