Release Notes: A notification to the message sender on trapped messages, more minor bugfixes, and new executable extensions (.eml, .wsf, .wsh, and .vbe).
Release Notes: There is improved handling of quotes in tag arguments. The sanitizer now deals with attempted obscuration of tag options with ? and % escapes. The poisoned files list has been extended.
Release Notes: A fix for a DoS bug in handling of certain quoted strings, and generally improved handling of quoted strings and wrapped header lines.
Release Notes: Addition of .CHM to the list of executable filename attachments, a fix for a minor DoS bug in quoted-unprintable filenames using international character sets, and defanging of scripts embedded in IMG SRC= and other tags, which is being actively exploited on Hotmail.
Release Notes: The ability to poison .HLP files was added, in response to a new worm that has figured out how to script them. See http://www.symantec.com/avcenter/venc/data/w95.babylonia.html for details. See the home page for an up-to-date list of attachment filenames to poison.
Release Notes: Corrections for some DoS bugs, improved macro scanning, and executable poisoning capabilities.
Release Notes: The sanitizer now scans Microsoft Word and Excel attachments for macros that appear to be trying to do dangerous things.
Release Notes: Added specific trapping of the currently active <A HREF="http://www.cert.org/advisories/CA-99-04-Melissa-Macro-Virus.html">Melissa Microsoft Word macro virus/worm</A>, as well as the ability to specify administrator notification by email of trapped exploit messages, and security quarantine of those messages.
Release Notes: Added the ability to indicate specific trojan-horse executable filenames. If an attachment containing a "poisoned" executable is processed, a security warning is inserted into the message and the attachment is reversibly mangled to prevent it being accessable by the recipient without intervention by tech support.