Microsoft Outlook and Outlook Express Arbitrary Program Execution Vulnerability
High Nessus Network Monitor Plugin ID 1290
SynopsisThe remote host may be tricked into running an executable file
DescriptionThe remote host may be running a version of the Outlook mail client that will execute arbitrary programs through objects embedded in HTML email messages.
SolutionSet Outlook and Outlook Express to use the Internet Explorer Restricted Sites Zone. This can be set on the Security Tab in Tools -> Options