Microsoft Outlook Express And Windows Mail NNTP Protocol Heap Buffer Overflow Vulnerability
The vendor has released an advisory to address this issue in supported versions of affected applications. Please see the referenced advisory for details on obtaining and applying the appropriate updates.
NOTE: Microsoft has released a revised bulletin (V2.0) MS07-056 to include Windows XP Professional x64 Edition in the affected software section and to address missing information for Outlook Express 6.0 SP1 on Windows 2000 SP4 and for Outlook Express 5.5 SP2 on Windows 2000 SP4.
Microsoft Windows Mail 0
Microsoft Outlook Express 5.5 SP2
Microsoft Outlook Express 6.0
Microsoft Outlook Express 6.0 SP1