You are currently offline, waiting for your internet to reconnect

External content is always blocked for attached e-mail messages after you install security update 949031 (security bulletin MS08-015)

This article has been archived. It is offered "as is" and will no longer be updated.
Symptoms
On a computer that has Microsoft Office Outlook 2003 installed, external content is always blocked for attached e-mail messages after you install security update 949031 (security bulletin MS08-015).
Resolution
Important This section, method, or task contains steps that tell you how to modify the registry. However, serious problems might occur if you modify the registry incorrectly. Therefore, make sure that you follow these steps carefully. For added protection, back up the registry before you modify it. Then, you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click the following article number to view the article in the Microsoft Knowledge Base:
322756 How to back up and restore the registry in Windows


To resolve this problem, apply hotfix package 959628, and then configure the DisableSenderTypeSecurity registry entry to enable the hotfix package. To do this, follow these steps:
  1. Apply hotfix package 959628. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
    959628 Description of the Outlook 2003 hotfix package (Outlook.msp): December 16, 2008
  2. Configure the DisableSenderTypeSecurity registry entry. To do this, follow these steps:
    1. Click Start, click Run, type regedit, and then click OK.
    2. Locate and then click the following registry subkey:
      HKEY_CURRENT_USER\Software\Microsoft\Office\11.0\Outlook\Preferences
    3. On the Edit menu, point to New, and then click DWORD Value.
    4. Type DisableSenderTypeSecurity , and then press ENTER.
    5. Right-click DisableSenderTypeSecurity , and then click Modify.
    6. In the Value data box, type 1, and then click OK.
    7. Exit Registry Editor.
Note If the original sender of the attached e-mail message that has the blocked content is not someone from your own Exchange organization, the images may still be blocked. In this scenario, you have to add the domain name of the sender if you want Outlook to automatically display the images in the attached e-mail message.
More information
For most external content, Outlook checks the sender type of the e-mail messages as part of the test for whether to show the contact. E-mail messages from an internal sender are considered safe. Therefore, external content is allowed. Security update 949031 changed this behavior for attached e-mail messages and file system based e-mail messages. With that update applied, the external content is blocked regardless of the sender type. This hotfix, together with the registry value, adds the sender test back. Therefore, if the e-mail message is from an internal sender, the external content is downloaded successfully. The new registry value actually disables the bypassing of the sender type. Therefore, the name of the registry entry is somewhat misleading. By setting the value, you tell Outlook to include the sender type in the test for safety for these kinds of messages.
Status
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
Note This is a "FAST PUBLISH" article created directly from within the Microsoft support organization. The information contained herein is provided as-is in response to emerging issues. As a result of the speed in making it available, the materials may include typographical errors and may be revised at any time without notice. See Terms of Use for other considerations.
Properties

Article ID: 960250 - Last Review: 01/15/2015 19:20:14 - Revision: 1.0

  • kbnosurvey kbarchive kbprb kbqfe kbexpertiseinter KB960250
Feedback