This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
It is possible to crash the remote email client.
The remote host is missing a cumulative security update for Outlook
Express that fixes a denial of service vulnerability in the Outlook
Express mail client.
To exploit this vulnerability, an attacker would need to send a
malformed message to a victim on the remote host. The message will
crash the version of Outlook, thus preventing the user from reading
See also :
Microsoft has released a set of patches for Outlook Express.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.7
Public Exploit Available : true