Definition

Outlook 2000 TNEF Decoding Vulnerability

oval:org.mitre.oval:def:1485

Unspecified vulnerability in Microsoft Outlook 2000 through 2003 Exchange 5.0 Server SP2 and 5.5 SP4 Exchange 2000 SP3 and Office allows remote attackers to execute arbitrary code via an e-mail message with a crafted Transport Neutral Encapsulation Format (TNEF) MIME attachment related to message length validation.

Family:

windows

Status:

ACCEPTED

Platform(s):

Microsoft Windows Server 2003
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows NT

Class:

vulnerability

Reference(s):

CVE-2006-0002

Product(s):

Microsoft Outlook