• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Outlook Express And Windows Mail MHTML Handler Information Disclosure Vulnerability

Solution:
The vendor has released fixes. Please see the references for more information.


Microsoft Windows Server 2003 Itanium SP2

• Microsoft Security Update for Outlook Express for Windows Server 2003 for Itanium-based Systems (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c8570e40-355b -4a9b-933d-53ae021cbda5&displaylang=en

Microsoft Windows Vista SP1

• Microsoft Security Update for Windows Mail for Windows Vista (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3851bcf8-f971 -4d38-b27f-97396854aac0&displaylang=en

Microsoft Windows Server 2008 for x64-based Systems 0

• Microsoft Security Update for Windows Mail for Windows Server 2008 x64 Edition (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=5f973f54-2322 -4b41-8c1a-3e712c0da8ae&displaylang=en

Microsoft Windows XP Professional x64 Edition

• Microsoft Security Update for Outlook Express for Windows XP x64 Edition (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=2220aece-79d2 -426f-90ec-24a17470567a&displaylang=en

Microsoft Windows Server 2003 Itanium SP1

• Microsoft Security Update for Outlook Express for Windows Server 2003 for Itanium-based Systems (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=c8570e40-355b -4a9b-933d-53ae021cbda5&displaylang=en

Microsoft Windows XP Professional x64 Edition SP2

• Microsoft Security Update for Outlook Express for Windows XP x64 Edition (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=2220aece-79d2 -426f-90ec-24a17470567a&displaylang=en

Microsoft Windows Server 2008 for Itanium-based Systems 0

• Microsoft Security Update for Windows Mail for Windows Server 2008 for Itanium-based Systems (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=9226cd85-1445 -4976-a126-757c5d142ffd&displaylang=en

Microsoft Windows XP Professional SP3

• Microsoft Security Update for Outlook Express for Windows XP (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=91469f2f-461c -4a67-8738-d42520427f6b&displaylang=en

Microsoft Windows Server 2008 for 32-bit Systems 0

• Microsoft Security Update for Windows Mail for Windows Server 2008 (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=dc3c4b63-acd3 -4469-8d47-e0562d99ee65&displaylang=en

3DM Software Disk Management Software SP2

• Microsoft Security Update for Outlook Express for Windows Server 2003 (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=30f2244a-f6fd -4fc1-a871-abf6958cb660&displaylang=en

Microsoft Windows Vista x64 Edition 0

• Microsoft Security Update for Windows Mail for Windows Vista for x64-based Systems (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3bf7eb8a-b347 -4661-be2d-682adc713769&displaylang=en

Microsoft Windows XP Professional SP2

• Microsoft Security Update for Outlook Express for Windows XP (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=91469f2f-461c -4a67-8738-d42520427f6b&displaylang=en

Microsoft Windows Vista 0

• Microsoft Security Update for Windows Mail for Windows Vista (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3851bcf8-f971 -4d38-b27f-97396854aac0&displaylang=en

Microsoft Windows Server 2003 x64 SP2

• Microsoft Security Update for Outlook Express for Windows Server 2003 x64 Edition (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3287f006-cbb2 -4c6d-820c-32833e08035a&displaylang=en

Microsoft Windows Server 2003 Standard x64 Edition

• Microsoft Security Update for Outlook Express for Windows Server 2003 x64 Edition (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3287f006-cbb2 -4c6d-820c-32833e08035a&displaylang=en

Microsoft Windows Vista x64 Edition SP1

• Microsoft Security Update for Windows Mail for Windows Vista for x64-based Systems (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=3bf7eb8a-b347 -4661-be2d-682adc713769&displaylang=en

Microsoft Windows 2000 Professional SP4

• Microsoft Security Update for Outlook Express 5.5 Service Pack 2 (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=6257bfae-35f0 -4c0e-b960-bca7aa6f86f7&displaylang=en


• Microsoft Security Update for Outlook Express 6 Service Pack 1 (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=dab178f7-c282 -41f4-acb1-a86e6aa4c91b&displaylang=en

3DM Software Disk Management Software SP1

• Microsoft Security Update for Outlook Express for Windows Server 2003 (KB951066)
  http://www.microsoft.com/downloads/details.aspx?FamilyId=30f2244a-f6fd -4fc1-a871-abf6958cb660&displaylang=en