Reverend
October 11th, 2002, 12:53 PM
Unchecked Buffer in Outlook Express S/MIME Parsing Could Enable System Compromise (Q328676)
Originally posted: October 10, 2002
Summary
Who should read this bulletin: Customers using Microsoft® Outlook Express
Impact of vulnerability: Run code of attackers choice.
Maximum Severity Rating: Critical
Recommendation: Customers using Outlook Express should apply the patch
Affected Software:
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
Note: Microsoft Outlook is a different product than Microsoft Outlook Express, and is not affected by the vulnerability.
The fix for this issue was included in Windows XP Service Pack 1, and in Internet Explorer 6.0 Service Pack 1. If you’ve installed either of these two service packs, you’re already protected against the vulnerability and don’t need the patch.
:arrow: Download (http://www.microsoft.com/windows/ie/downloads/critical/q328676/default.asp)
Originally posted: October 10, 2002
Summary
Who should read this bulletin: Customers using Microsoft® Outlook Express
Impact of vulnerability: Run code of attackers choice.
Maximum Severity Rating: Critical
Recommendation: Customers using Outlook Express should apply the patch
Affected Software:
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
Note: Microsoft Outlook is a different product than Microsoft Outlook Express, and is not affected by the vulnerability.
The fix for this issue was included in Windows XP Service Pack 1, and in Internet Explorer 6.0 Service Pack 1. If you’ve installed either of these two service packs, you’re already protected against the vulnerability and don’t need the patch.
:arrow: Download (http://www.microsoft.com/windows/ie/downloads/critical/q328676/default.asp)