Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Microsoft Outlook and Outlook Express Arbitrary Program Execution Vulnerability

High

Synopsis

The remote host may be tricked into running an executable file

Description

The remote host may be running a version of the Outlook mail client that will execute arbitrary programs through objects embedded in HTML email messages.

Solution

Set Outlook and Outlook Express to use the Internet Explorer Restricted Sites Zone. This can be set on the Security Tab in Tools -> Options