Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Cumulative Security Update for Outlook Express (923694)

Medium

Synopsis

Arbitrary code can be executed on the remote host through the email client.

Description

The remote host is running a version of Microsoft Outlook Express that contains a security flaw that may allow an attacker to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to send a malformed HTML email to a victim on the remote host and have them open it.

Solution

Microsoft has released a set of patches for Outlook Express at http://www.microsoft.com/technet/security/bulletin/ms06-076.mspx