Microsoft Outlook TNEF Stream With MAPI Attachment Remote Code Execution Vulnerability

Microsoft Outlook is prone to a remote code-execution vulnerability because it fails to properly verify attachments.

Attackers can exploit this issue by enticing an unsuspecting user into opening a specially crafted email attachment.

Successfully exploiting this issue will allow an attacker to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts will result in a denial-of-service condition.


 

Privacy Statement
Copyright 2010, SecurityFocus