Microsoft Outlook Express 6 Plain Text Message Script Execution Vulnerability

Microsoft Outlook Express 6 contains a vulnerability which allows an email message of content-type 'text/plain' to execute specifically crafted scripting components.

It is important to note that Outlook Express 6 does not allow any scripting to be executed by default. This security feature must be turned off in order to exploit this vulnerability.


 

Privacy Statement
Copyright 2010, SecurityFocus