Microsoft Outlook Vulnerability

How would it be if you get to know that a remote user can cause unwanted and hazardous code to be executed on the target user’s system. Alarmed?

There is every reason to answer this question with a YES. You are more susceptible to this vulnerability if you are using Microsoft Outlook. This vulnerability had been reported by Greg MacManus of iDefense Labs. Wanna know how this would be happening?

Procedure: A remote user can create a specially crafted mailto URL that, when loaded by the target user, will trigger an input validation flaw and execute unwanted code on the target system. The code when executed, will run with the privileges of the target user.

Solution: Microsoft has come out with specific fixes which are free to download:

Outlook 2000 Service Pack 3: Get it here

Outlook 2002 Service Pack 3: Get it here

Outlook 2003 Service Pack 2: Get it here

Outlook 2003 Service Pack 3: Get it here

Outlook 2007: Get it here

A restart is not required.

Have a look at the Microsoft Advisary.

For more related articles: Security Tracker

Advertisements

2 thoughts on “Microsoft Outlook Vulnerability

  1. Pingback: Remove MSN Messenger Tray Icon in XP « Avyaya - Tech Rants

  2. Pingback: How To Remove MSN Messenger Tray Icon | Nirvana's Query

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s