The same thing happens using autorun.inf:
WG intercepts with this code:
[autorun]
open=finjan.vbs
but does not when wscript.exe is used:
[autorun]
wscript.exe finjan.vbs
Therefore, WG has the same weakness as the other script blocking programs, and some other means of protection is needed if there is a concern that a malicious script file could somehow be run using the wscript.exe command.
Let me know if there is anything else about this that I haven't thought of.
----
rich