Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Outlook Express NNTP LIST Command Remote Overflow

Medium

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running Outlook Express. This version of Outlook Express is vulnerable to a buffer overflow when malformed NNTP responses are parsed by versions of msoe.dll prior to 6.00.2800.1506. An attacker exploiting this flaw would need to host a malicious NNTP server and be able to convince a local Outlook user to connect to the NNTP server. Successful exploitation would result in arbitrary code being executed on the machine running Outlook Express.

Solution

Upgrade or patch according to vendor recommendations.