The system is running Windows XP and due to this user's desire to download and run everything he gets his fingers on I am setting up this new policy. Everything seems to be ok so far except one problem. When I double click on an image from Oulook (XP) I seem to get an access denied error message.
When I save the .JPG to disk and double click it from there, the Windows Picture and Fax viewer displays it fine. When I disable the policy I notice that rundll32.exe is called from outlook and the picture displays fine, but even after adding rundll32.exe and explorer.exe to the allowed list of apps it still doesn't work. Any thoughts?
One more thing - the default picture viewer is a DLL not an EXE so I imagine outlook is trying to use "something" to spawn this DLL, but I don't know what it is.