Some Microsoft Office document components are detected as Executable files in Messaging Gateway 10.7. Message Audit Logs will typically show one of the following components in the Suspect Attachments section :
This issue has been addressed with the SMG 10.7.5 release.
To exempt Microsoft document internals from being detected as executable files
Workaround for 10.7.4 and earlier:
The attachment is being blocked by the executable file list. Removing the following 4 file types from that lst may resolve the issue