Family: Windows : Microsoft Bulletins --> Category: infos
Vulnerability in Outlook Express Could Allow Remote Code Execution (911567) Vulnerability Scan
Vulnerability Scan Summary
Acertains the version of MSOE.dll
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host through the email client.
The remote host is running a version of Microsoft Outlook Express which contains
a security flaw which may allow a possible hacker to execute arbitrary code on the remote host.
To exploit this flaw, a possible hacker would need to send a malformed Windows Address Book (.wab)
file to a victim on the remote host and have him open the file.
Microsoft has released a set of patches for Outlook Express :
Medium / CVSS Base Score : 5.6
Click HERE for more information and discussions on this network vulnerability scan.