MS04-018: Cumulative Security Update for Outlook Express (823353)
Medium Nessus Plugin ID 13643
SynopsisIt is possible to crash the remote email client.
DescriptionThe remote host is missing a cumulative security update for Outlook Express that fixes a denial of service vulnerability in the Outlook Express mail client.
To exploit this vulnerability, an attacker would need to send a malformed message to a victim on the remote host. The message will crash the version of Outlook, thus preventing the user from reading email.
SolutionMicrosoft has released a set of patches for Outlook Express.