Outlook Express/Windows Mail MHTML URI Handler Information Disclosure Vulnerability

Outlook Express/Windows Mail MHTML URI Handler Information Disclosure Vulnerability

References:

Internet Explorer Arbitrary Content Disclosure Vulnerability Test (codedreamer)
Mhtml MSIE Exploitation Framework (RSnake)
IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 ("LIUDIEYU dot COM" )
Information on Reports of IE 7 Vulnerability (Microsoft)
Microsoft Homepage (Microsoft)
Microsoft Security Bulletin MS07-034 - Critical (Microsoft)
Vulnerability Note VU#783761 Microsoft Windows 'MHTML' protocol handler fails to (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus