<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns="http://www.w3.org/TR/REC-html40">

<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=ProgId content=Word.Document>
<meta name=Generator content="Microsoft Word 10">
<meta name=Originator content="Microsoft Word 10">
<link rel=File-List href="cid:filelist.xml@01C5A3DF.18C02FD0">
<title>Normalised Template for Word97</title>
<!--[if gte mso 9]><xml>
 <o:OfficeDocumentSettings>
  <o:DoNotRelyOnCSS/>
 </o:OfficeDocumentSettings>
</xml><![endif]--><!--[if gte mso 9]><xml>
 <w:WordDocument>
  <w:ActiveWritingStyle Lang="EN-US" VendorID="8" DLLVersion="513" NLCheck="0">1</w:ActiveWritingStyle>
  <w:SpellingState>Clean</w:SpellingState>
  <w:GrammarState>Clean</w:GrammarState>
  <w:DocumentKind>DocumentEmail</w:DocumentKind>
  <w:EnvelopeVis/>
  <w:DisplayHorizontalDrawingGridEvery>0</w:DisplayHorizontalDrawingGridEvery>
  <w:DisplayVerticalDrawingGridEvery>0</w:DisplayVerticalDrawingGridEvery>
  <w:UseMarginsForDrawingGridOrigin/>
  <w:Compatibility>
   <w:FootnoteLayoutLikeWW8/>
   <w:ShapeLayoutLikeWW8/>
   <w:AlignTablesRowByRow/>
   <w:ForgetLastTabAlignment/>
   <w:DoNotUseHTMLParagraphAutoSpacing/>
   <w:LayoutRawTableWidth/>
   <w:LayoutTableRowsApart/>
   <w:UseWord97LineBreakingRules/>
  </w:Compatibility>
  <w:BrowserLevel>MicrosoftInternetExplorer4</w:BrowserLevel>
 </w:WordDocument>
</xml><![endif]-->
<style>
<!--
 /* Font Definitions */
 @font-face
        {font-family:"Zurich BT";
        panose-1:2 11 6 3 2 2 2 3 2 4;
        mso-font-charset:0;
        mso-generic-font-family:swiss;
        mso-font-pitch:variable;
        mso-font-signature:135 0 0 0 27 0;}
@font-face
        {font-family:"Zurich Blk BT";
        panose-1:2 11 8 4 3 5 2 3 2 4;
        mso-font-charset:0;
        mso-generic-font-family:swiss;
        mso-font-pitch:variable;
        mso-font-signature:135 0 0 0 27 0;}
 /* Style Definitions */
 p.MsoNormal, li.MsoNormal, div.MsoNormal
        {mso-style-parent:"";
        margin:0in;
        margin-bottom:.0001pt;
        mso-pagination:widow-orphan;
        mso-hyphenate:none;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";}
h1
        {mso-style-next:Normal;
        margin-top:12.0pt;
        margin-right:0in;
        margin-bottom:3.0pt;
        margin-left:0in;
        mso-pagination:widow-orphan;
        page-break-after:avoid;
        mso-outline-level:1;
        mso-hyphenate:none;
        font-size:14.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich Blk BT";
        mso-font-kerning:14.0pt;
        font-weight:normal;}
h2
        {mso-style-next:Normal;
        margin-top:12.0pt;
        margin-right:0in;
        margin-bottom:3.0pt;
        margin-left:0in;
        mso-pagination:widow-orphan;
        page-break-after:avoid;
        mso-outline-level:2;
        mso-hyphenate:none;
        font-size:12.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich Blk BT";
        font-weight:normal;
        font-style:italic;
        mso-bidi-font-style:normal;}
h3
        {mso-style-next:Normal;
        margin-top:12.0pt;
        margin-right:0in;
        margin-bottom:3.0pt;
        margin-left:0in;
        mso-pagination:widow-orphan;
        page-break-after:avoid;
        mso-outline-level:3;
        mso-hyphenate:none;
        font-size:12.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich BT";
        font-weight:normal;}
p.MsoHeader, li.MsoHeader, div.MsoHeader
        {margin:0in;
        margin-bottom:.0001pt;
        mso-pagination:widow-orphan;
        mso-hyphenate:none;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";
        font-style:italic;
        mso-bidi-font-style:normal;}
p.MsoFooter, li.MsoFooter, div.MsoFooter
        {margin:0in;
        margin-bottom:.0001pt;
        mso-pagination:widow-orphan;
        mso-hyphenate:none;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich Blk BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";}
p.MsoTitle, li.MsoTitle, div.MsoTitle
        {margin-top:7.05pt;
        margin-right:0in;
        margin-bottom:.05in;
        margin-left:0in;
        text-align:center;
        mso-pagination:widow-orphan;
        mso-hyphenate:none;
        font-size:18.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";
        mso-font-kerning:14.0pt;
        font-weight:bold;
        mso-bidi-font-weight:normal;}
p.MsoBodyText, li.MsoBodyText, div.MsoBodyText
        {margin:0in;
        margin-bottom:.0001pt;
        mso-pagination:widow-orphan;
        mso-hyphenate:none;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich Blk BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";}
a:link, span.MsoHyperlink
        {color:blue;
        text-decoration:underline;
        text-underline:single;}
a:visited, span.MsoHyperlinkFollowed
        {color:purple;
        text-decoration:underline;
        text-underline:single;}
p.BodySingle, li.BodySingle, div.BodySingle
        {mso-style-name:"Body Single";
        margin:0in;
        margin-bottom:.0001pt;
        mso-pagination:widow-orphan;
        mso-hyphenate:none;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";}
p.Bullet1, li.Bullet1, div.Bullet1
        {mso-style-name:"Bullet 1";
        margin-top:0in;
        margin-right:0in;
        margin-bottom:0in;
        margin-left:.2in;
        margin-bottom:.0001pt;
        text-indent:-.2in;
        mso-pagination:widow-orphan;
        mso-list:l2 level1 lfo2;
        tab-stops:.2in;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich Blk BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";
        font-style:italic;
        mso-bidi-font-style:normal;}
p.NumberList, li.NumberList, div.NumberList
        {mso-style-name:"Number List";
        margin-top:0in;
        margin-right:0in;
        margin-bottom:0in;
        margin-left:.25in;
        margin-bottom:.0001pt;
        text-indent:-.25in;
        mso-pagination:widow-orphan;
        mso-list:l1 level1 lfo3;
        mso-hyphenate:none;
        tab-stops:list .25in;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";}
p.Subhead, li.Subhead, div.Subhead
        {mso-style-name:Subhead;
        margin-top:.05in;
        margin-right:0in;
        margin-bottom:.05in;
        margin-left:0in;
        mso-pagination:widow-orphan;
        mso-hyphenate:none;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";
        font-style:italic;
        mso-bidi-font-style:normal;}
p.Bullet, li.Bullet, div.Bullet
        {mso-style-name:Bullet;
        margin-top:0in;
        margin-right:0in;
        margin-bottom:0in;
        margin-left:.2in;
        margin-bottom:.0001pt;
        text-indent:-.2in;
        mso-pagination:widow-orphan;
        mso-list:l0 level1 lfo1;
        mso-hyphenate:none;
        tab-stops:.2in;
        font-size:11.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich Blk BT";
        mso-fareast-font-family:"Times New Roman";
        mso-bidi-font-family:"Times New Roman";}
span.EmailStyle26
        {mso-style-type:personal-compose;
        mso-style-noshow:yes;
        mso-ansi-font-size:10.0pt;
        mso-bidi-font-size:10.0pt;
        font-family:"Zurich BT";
        mso-ascii-font-family:"Zurich BT";
        mso-hansi-font-family:"Zurich BT";
        color:windowtext;
        font-weight:normal;
        font-style:normal;
        text-decoration:none;
        text-underline:none;
        text-decoration:none;
        text-line-through:none;}
span.SpellE
        {mso-style-name:"";
        mso-spl-e:yes;}
@page Section1
        {size:595.45pt 841.7pt;
        margin:1.0in 1.0in 1.0in 1.0in;
        mso-header-margin:.55in;
        mso-footer-margin:.55in;
        mso-paper-source:0;}
div.Section1
        {page:Section1;}
 /* List Definitions */
 @list l0
        {mso-list-id:728958180;
        mso-list-type:simple;
        mso-list-template-ids:2089575086;}
@list l0:level1
        {mso-level-number-format:bullet;
        mso-level-style-link:Bullet;
        mso-level-text:\F0B7;
        mso-level-tab-stop:.25in;
        mso-level-number-position:left;
        margin-left:.2in;
        text-indent:-.2in;
        font-family:Symbol;}
@list l1
        {mso-list-id:1592004626;
        mso-list-type:simple;
        mso-list-template-ids:625361936;}
@list l1:level1
        {mso-level-style-link:"Number List";
        mso-level-tab-stop:.25in;
        mso-level-number-position:left;
        margin-left:.25in;
        text-indent:-.25in;}
@list l2
        {mso-list-id:1857114475;
        mso-list-type:simple;
        mso-list-template-ids:-1553200408;}
@list l2:level1
        {mso-level-number-format:bullet;
        mso-level-style-link:"Bullet 1";
        mso-level-text:\F0A8;
        mso-level-tab-stop:.25in;
        mso-level-number-position:left;
        margin-left:.25in;
        text-indent:-.25in;
        font-family:Symbol;}
ol
        {margin-bottom:0in;}
ul
        {margin-bottom:0in;}
-->
</style>
<!--[if gte mso 10]>
<style>
 /* Style Definitions */ 
 table.MsoNormalTable
        {mso-style-name:"Table Normal";
        mso-tstyle-rowband-size:0;
        mso-tstyle-colband-size:0;
        mso-style-noshow:yes;
        mso-style-parent:"";
        mso-padding-alt:0in 5.4pt 0in 5.4pt;
        mso-para-margin:0in;
        mso-para-margin-bottom:.0001pt;
        mso-pagination:widow-orphan;
        font-size:10.0pt;
        font-family:"Times New Roman";}
</style>
<![endif]-->
</head>

<body lang=EN-US link=blue vlink=purple style='tab-interval:.5in'>

<div class=Section1>

<p class=MsoNormal><font size=2 face="Zurich BT"><span style='font-size:10.0pt'>I
am using a .NET application, in which there is a feature to upload files (.doc
.xls) onto the server. How do I ensure that the end user is uploading only
permitted file type(s) &amp; not files containing any malicious code which can
lead to the compromise of the server? Please suggest security measures that should
be taken to avoid any such unwanted upload.<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face="Zurich BT"><span style='font-size:10.0pt'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face="Zurich BT"><span style='font-size:11.0pt;
mso-no-proof:yes'><span style='mso-bidi-font-size:10.0pt'>&nbsp;<o:p></o:p></span></span></font></p>

<p class=MsoNormal><font size=2 face="Zurich BT"><span style='font-size:11.0pt;
mso-no-proof:yes'><span style='mso-bidi-font-size:10.0pt'>&nbsp;<o:p></o:p></span></span></font></p>

<p class=MsoNormal><font size=2 face="Zurich BT"><span style='font-size:10.0pt;
mso-no-proof:yes'>Regards</span></font><span style='mso-no-proof:yes'><o:p></o:p></span></p>

<p class=MsoNormal><font size=2 face="Zurich BT"><span style='font-size:11.0pt;
mso-no-proof:yes'><span style='mso-bidi-font-size:10.0pt'>&nbsp;<o:p></o:p></span></span></font></p>

<p class=MsoNormal><strong><b><font size=2 color=maroon face="Zurich BT"><span
style='font-size:10.0pt;font-family:"Zurich BT";color:maroon;mso-no-proof:yes'>Usman</span></font></b></strong><span
style='mso-no-proof:yes'><o:p></o:p></span></p>

<p class=MsoNormal><font size=2 face="Zurich BT"><span style='font-size:11.0pt;
mso-no-proof:yes'><span style='mso-bidi-font-size:10.0pt'>&nbsp;</span></span><o:p></o:p></font></p>

<p class=MsoNormal><font size=2 face="Zurich BT"><o:p>&nbsp;</o:p></font></p>

</div>

<P>
<FONT FACE="Zurich BT" SIZE=1 COLOR="#0000ff"><P>"This e-mail message may contain confidential,
 proprietary or legally privileged information. It should not be used by anyone who is not the 
original intended recipient. If you have erroneously received this message, please delete it 
immediately and notify the sender. The recipient acknowledges that ICICI Bank or its subsidiaries and associated companies,  (collectively "ICICI Group"), are unable to exercise control or ensure or guarantee the integrity of/over the contents of the information contained in e-mail 
transmissions and further acknowledges that any views expressed in this message are those of the individual sender and no binding nature of the message shall be implied or assumed unless the 
sender does so expressly with due authority of ICICI Group.Before opening any attachments please check them for viruses and defects."
</P>
</FONT>

</body>

</html>