OL2000: Scripts Embedded in HTML Messages Run without Warning.

ID: Q215774

The information in this article applies to:
  • Microsoft Outlook 2000

SYMPTOMS

When opening an HTML formatted e-mail message, embedded scripts may start without warning.


CAUSE

Active Scripting in the Internet security zone is enabled.


RESOLUTION

Scripting in Outlook is enabled by default. You can change this behavior by configuring Outlook to use the Restricted sites zone for security and customizing the Restricted sites zone to turn off Active Scripting.

Caution: Changing security zone settings can expose your computer to potentially damaging scripts. Use caution when changing these settings.
If you view the message in either AutoPreview or the Preview Pane and there is script in the e-mail message, the script is not executed. An "S" button appears on the right side of the preview pane header. Clicking the S opens a warning, without opening the message or executing any scripts. Opening the message allows the script to be executed unless you performed the steps below.


MORE INFORMATION

Change the Security Zone Settings to not Allow Active Scripting

To configure Outlook to use the Restricted Security Zone and disable Active Scripting, flollow these steps:
  1. On the Tools menu, click Options.


  2. On the Security tab, click Restricted sites in the Zone list, and then click Zone Settings.


  3. Click OK to the following warning message:


    4. You are about to change security settings that will affect the way scripts and active content can run in Microsoft Internet Explorer, Outlook, Outlook Express, and any other programs that use security zones.
  4. Click to select the Restricted sites icon, and then click Custom level.


  5. Under Scripting/Active Scripting, click Disable.


  6. Click OK, Yes, OK, and OK to close the open windows and apply the setting.



REFERENCES

For more information on security zones please see the following article in the Microsoft Knowledge base:

Q196799 Security Zones in Outlook 2000

Additional query words: OL2K safe scripts Activex unsigned

Keywords : kbdta PgmEvnt Gnlsec
Version : WINDOWS:2000
Platform : WINDOWS
Issue type : kbprb


Last Reviewed: December 10, 1999
© 2000 Microsoft Corporation. All rights reserved. Terms of Use.