Microsoft Outlook Express Plaintext Email Security Policy Bypass Vulnerability

Microsoft Outlook Express is reported prone to a security policy bypass vulnerability.

The vulnerability presents itself if an attached image file is referenced using a specially crafted CID URI.

This will result in a policy bypass because the image will be automatically rendered when the email is viewed in Outlook Express.


 

Privacy Statement
Copyright 2010, SecurityFocus