SMG 10.7 detects MS Document file internals as various True Type executables, differing in behavior than default 10.6 and previous.
search cancel

SMG 10.7 detects MS Document file internals as various True Type executables, differing in behavior than default 10.6 and previous.

book

Article ID: 176326

calendar_today

Updated On:

Products

Messaging Gateway

Issue/Introduction

Some Microsoft Office document components are detected as Executable files in Messaging Gateway 10.7. Message Audit Logs will typically show one of the following components in the Suspect Attachments section :

  • olepres000
  • dir

Resolution

An option is being made in a future build to extract OLE 1.0 native data streams only, which will function similar to versions 10.6 and previous and will not generate these internal detections.

Workaround:

The attachment is being blocked by the executables file list. Removing the following 4 file types from that list may resolve the issue

  •     Unix Executable (PDP-11/pre-System V VAX)
  •     True file type is Unix Executable (x86)
  •     True file type is Unix Executable (3B20)
  •     MSDOS Device Driver

 

Powered by Wolken Software