Family: Windows : Microsoft Bulletins --> Category: infos
Vulnerability in Outlook Express Could Allow Remote Code Execution (897715) Vulnerability Scan
Vulnerability Scan Summary
Acertains the version of MSOE.dll
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host through the email client.
The remote host is running a version of Microsoft Outlook Express which contains
a security flaw which may allow a possible hacker to execute arbitrary code on the remote host.
To exploit this flaw, a possible hacker would need to lure a user to connect to a rogue NNTP
(news) server sending malformed replies to several queries.
Microsoft has released a set of patches for Outlook Express :
Solution : http://www.microsoft.com/technet/security/bulletin/ms05-030.mspx
High / CVSS Base Score : 8
Click HERE for more information and discussions on this network vulnerability scan.