New Search

Outlook 2003 TNEF Decoding Vulnerability

oval:org.mitre.oval:def:1456

Unspecified vulnerability in Microsoft Outlook 2000 through 2003 Exchange 5.0 Server SP2 and 5.5 SP4 Exchange 2000 SP3 and Office allows remote attackers to execute arbitrary code via an e-mail message with a crafted Transport Neutral Encapsulation Format (TNEF) MIME attachment related to message length validation.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
  • Microsoft Windows XP
  • Microsoft Windows Server 2003
  • Microsoft Windows NT
Class:
vulnerability
Reference(s):
  • CVE-2006-0002
Product(s):
  • Microsoft Outlook