What's New  

Outlook Issues
Exchange Server
Utilities and Add-ins
Video Tutorials
Product Reviews

Subscribe to
Exchange Messaging
Outlook
Previous Issues Index

 

Peer-to-peer support: Slipstick Forums



 

Exchange Messaging Outlook
Volume 5, Number 20

Greetings! Welcome to Vol. 5, No. 20, of Exchange Messaging Outlook, a biweekly newsletter about Microsoft Exchange and Microsoft Outlook.

Today's highlights:
  • Preview Office XP and Outlook 2002
  • New Outlook vulnerability patch
  • Redeeming the Outlook E-mail Security Update

Regular features:
  • New utilities
  • Updated utilities
  • Other new resources

Please note: the links contained in this article were accurate as of the date of this publication. We cannot guarantee the accuracy at a later date.

Preview Office XP and Outlook 2002

While supplies last, Microsoft is distributing the Office XP Professional with Microsoft FrontPage Corporate Preview Beta, which includes the next version of Outlook -- Outlook 2002. MSDN Universal subscribers will get it in their March shipment; TechNet Plus subscribers in April. Everyone else can order it now for $19.95 from https://microsoft.order-1.com/officecpp/.

We strongly recommend that you install this beta only on test systems. Two other things to note: Outlook 2002 includes all the features of the Outlook E-mail Security Update. And, you must be connected to the Internet to activate Office XP using the new anti-piracy protection scheme in this version.

This beta expires August 31, 2001, and Microsoft provides no product support. Use at your own risk ... but have fun!

New Outlook vulnerability patch

Microsoft has posted patches for Internet Explorer 5.01 SP1 and 5.5 SP1 to resolve a "Malformed vCard" vulnerability in Outlook. This vulnerability could allow a malicious sender to run code on your system. See http://www.microsoft.com/technet/security/bulletin/ms01-012.asp for more details.

By the way, you won't find this patch for Outlook listed on Microsoft's Office Update site at http://www.officeupdate.com. It's one of several security patches related to the web components in Outlook (those shared with Outlook Express) that need to be updated with a download for Internet Explorer. Yet, despite the risk that these security loopholes present, Microsoft continues to omit information about these patches from the Office Update site and doesn't include them in Office Auto Update Notification Service mailings. Given Microsoft's strong actions on security, such as the Outlook Email Security Update, we don't understand why Office Update shouldn't provide a complete list of patches affected Outlook, both those from the Office team and those from the IE team.

Just so you don't have to scour Microsoft for these patches, we keep a complete list at http://www.slipstick.com/outlook/antivirus.htm and http://www.slipstick.com/outlook/htmlmail.htm.

Redeeming the Outlook E-mail Security Update

We have documented many ways to get around the attachment blocking feature of the Outlook E-mail Security Update (http://www.slipstick.com/outlook/esecup/getexe.htm), but until now there was no workaround for the "object model guard" except to recode your program with Extended MAPI. The object model guard inhibits access to the address book and message sending by presenting a dialog box where the user must authorize access. For some applications, like mass mailings, this pretty much kills the application.

Now a new developer toolkit, Outlook Redemption (http://www.dimastr.com/redemption/), provides a safe way for your Outlook code to run without triggering the object model guard dialogs. It also adds some capabilities that the Outlook object model does not provide, such as getting the sender's e-mail address, opening a saved message .msg file and directly accessing the rich-text content of an Outlook item.

Back to Top

Please note: the links below were accurate as of the date of this publication. We cannot guarantee the accuracy at a later date. For the most up-to-date information, please visit our Add-ins section and search for the product name.

New Utilities

SCOUT
http://scout.ants.com/
Automatic contact management tool for Outlook 98 and Outlook 2000 that allows you to exchange information with people who have your e-mail address via an online service. [No longer available as of Nov 2002]
Back to Top

Updated utilities

 ACTIVE FOLDERS
http://www.c2c.com/
Version 2.6 adds a Permissions Manager feature to this Exchange Server administration and usage analysis tool. Permissions Manager allows an administrator to find and reassign mailbox and folder permissions. The update also includes performance and reporting improvements.

OUTLOOK SPY
http://www.dimastr.com/outspy/
Version 1.4 of this Outlook developer utility improves browsing of the Outlook Object Model and CDO interfaces and exposes several new types of information about Outlook objects.

SECURITY UPDATE
http://www.microsoft.com/technet/security/bulletin/ms01-012.asp
Resolves the "Malformed vCard" vulnerability in Outlook.

SIMPLESYNC
http://www.cps-systems.com/
Version 2.5.1 of this LDAP-based directory synchronization tool adds forest-to-forest directory sync for Active Directory, improved custom mapping, ODBC-to-LDAP capability and a new administrator interface.

WATCH YOUR BACK!
http://www.grinningshark.com/
Version 4.10 adds a button for instant access to attachment operations, including attachments blocked by the Outlook E-mail Security Update.

Back to Top

Other new resources

 DIGITAL DASHBOARD RESOURCE KIT 2.2
http://www.microsoft.com/business/digitaldashboard/WhatsNewDD.asp
Version 2.2 of the kit updates the SQL Server Dashboard.

OUTLOOK REDEMPTION
http://www.dimastr.com/redemption/
Provides an interface to Outlook objects that avoids the "object model guard" of the Outlook E-mail Security Update and exposes properties and methods not available through the Outlook model, such as sender address and Internet message headers. Several security features protect it from being used by malicious programs to send Outlook mail. Public beta.

TAKE A FIRST LOOK AT OFFICE XP PRODUCT EVALUATION GUIDE
http://www.microsoft.com/technet/Office/of10prgd.asp
Design goals and features for the next version of Office, coming 2nd quarter 2001. Outdated before it was even posted, since it includes references to the Local Web Storage System, which was cut from Office XP in December.

TO COPY FILE ATTACHMENTS FROM ONE ITEM TO ANOTHER
http://www.slipstick.com/dev/code/copyatts.htm
VBScript code sample using the Scripting RunTime's FileSystemObject. Can also be used in VB or VBA projects.

Back to Top

More Information

Click here to subscribe to the Exchange Messaging Outlook newsletter. 

Exchange Messaging Outlook Newsletter back issues

ISSN 1523-7990
Copyright 1996-2009, Slipstick Systems and CDOLive LLC. All rights reserved.
Updated Apr 29 2009
Copyright Slipstick Systems. All rights reserved.
Send comments using our Feedback page

Home | What's New | Exchange Server | Outlook | Utilities | Bookstore
About Slipstick | Feedback | Privacy Policy | Site Map | Archived Pages | Link to Us | Advertise