MS-Anti-Spyware runs script instead of opening it

  • Thread starter Thread starter Alexander Riedel
  • Start date Start date
A

Alexander Riedel

After installing PrimalScript or PrimalCode from SAPIEN
Technologies Inc. (www.sapien.com)
you have a new context menu entry in Windows Explorer for
VBS, JS and other script file called "Edit with PrimalScript"

If you use this menu topic with MS AntiSpyware installed,
the MS software dispalys a security prompt and, after
acknowledging this, RUNS the script rather than opening it.

This present a huge security hole.
The attempt to load an unknown script into the editor
causes it to run. Since most of our users are System
Administrators these scripts are then run with
administrative rights.

Please respond ASAP to my email address below about how and
when this will be fixed.

Sincerely,

Alexander Riedel
Vice President
SAPIEN Technologies, Inc.
(e-mail address removed)
 
You have a situation in which Microsoft Antispyware essentially breaks your
application.

I'd recommend that you use the web form at spynet.com to get directly in
touch with Microsoft about this issue.

I would use the Vendor Dispute form.

Although the primary purpose for this form is vendors who feel that their
product is inaccurately described by Microsoft Antispyware, it can also be
used to ask to get your application listed as "known."

Neither of these purposes fits your situation exactly, but this is the route
I would recommend to get your concern heard and open communications.

Although this page is not branded "Microsoft"--it is the proper venue for
these communications. You can check this for yourself by reading this
Microsoft KB article:

http://support.microsoft.com/kb/892340 Microsoft Windows AntiSpyware (Beta)
identifies a program as a spyware threat (Listing criteria and Dispute
process)
 
The script execution issue is known and we are working on resolving this in
a future build.

--
-steve

Dodson [MSFT]
MCSE, CISSP
PSS Security

--

This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this
message are best directed to the newsgroup/thread from which they
originated.
 
Back
Top