• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Outlook IFrame Embedded Media Player File Vulnerability

An issue has been reported with Microsoft Outlook which may result in the automatic execution of JavaScript in HTML formatted email.

If a Windows Media Player file is referenced within an IFRAME tag, JavaScript commands included in the file may automatically execute when the email is viewed.

Additional versions of Outlook may share this vulnerability. This has not, however, been confirmed.