|
 |  |  |  |  |  |  |
| Welcome to Windows Vista Forums. Our forum is dedicated to helping you find solutions with any problems, errors or issues you are experiencing with Windows Vista. The Vista forum also covers news and updates and has an extensive Windows Vista tutorial section that covers a wide range of tips and tricks. |
| |||||||
 |
| |
10-09-2007
| #1 (permalink) |
| | Outlook Express and Windows Mail NNTP Memory Corruption Vulnerability MS07-056 : Outlook Express and Windows Mail NNTP Memory Corruption Vulnerability Windows ships with either the Outlook Express (OE) or the Windows Mail (WM) email client to allow you to download and read your email. According to Microsoft, both these email clients suffer from a memory corruption vulnerability involving the way they handle the Network News Transfer Protocol (NNTP) . By enticing one of your users to a specially designed web page containing NNTP content, an attacker could exploit this vulnerability to execute code on that user's computer with that user's privileges. Since typical Windows users have local administrative privileges, attackers can usually exploit this flaw to gain complete control of Windows machines. Microsoft rating: Critical. http://www.microsoft.com/technet/sec.../ms07-056.mspx -- Leythos - Igitur qui desiderat pacem, praeparet bellum. - Calling an illegal alien an "undocumented worker" is like calling a drug dealer an "unlicensed pharmacist" spam999free@xxxxxx (remove 999 for proper email address) |
My System Specs |
|
10-09-2007
| #2 (permalink) |
| | Re: Outlook Express and Windows Mail NNTP Memory Corruption Vulnerability Your point is? This was patched today! -- Regards, Richard Urban Microsoft MVP Windows Shell/User (For email, remove the obvious from my address) "Leythos" <void@xxxxxx> wrote in message news:MPG.2176042fc8392ab4989a6c@xxxxxx Quote: > MS07-056 : Outlook Express and Windows Mail NNTP Memory Corruption > Vulnerability > > Windows ships with either the Outlook Express (OE) or the Windows Mail > (WM) email client to allow you to download and read your email. > According to Microsoft, both these email clients suffer from a memory > corruption vulnerability involving the way they handle the Network News > Transfer Protocol (NNTP) . By enticing one of your users to a specially > designed web page containing NNTP content, an attacker could exploit > this vulnerability to execute code on that user's computer with that > user's privileges. Since typical Windows users have local administrative > privileges, attackers can usually exploit this flaw to gain complete > control of Windows machines. > Microsoft rating: Critical. > > http://www.microsoft.com/technet/sec.../ms07-056.mspx > > -- > > Leythos > - Igitur qui desiderat pacem, praeparet bellum. > - Calling an illegal alien an "undocumented worker" is like calling a > drug dealer an "unlicensed pharmacist" > spam999free@xxxxxx (remove 999 for proper email address) |
| My System Specs |
|
10-09-2007
| #3 (permalink) |
| | Re: Outlook Express and Windows Mail NNTP Memory Corruption Vulnerability In article <ezdcPkuCIHA.4360@xxxxxx>, richardurbanREMOVETHIS@xxxxxx says... Quote: > Your point is? > > This was patched today! might be interested in it, since it fits with the group. I didn't see it mentioned specifically in between Adam's rants. -- Leythos - Igitur qui desiderat pacem, praeparet bellum. - Calling an illegal alien an "undocumented worker" is like calling a drug dealer an "unlicensed pharmacist" spam999free@xxxxxx (remove 999 for proper email address) |
| My System Specs |
|
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Forum | |||
| Importing back-up Outlook Express file with emails to Outlook 2007 and/or Windows Live Mail | Vista mail | |||
| Transfert messages Outlook 2000 ou Outlook Express 6 vers Windows Mail | Vista mail | |||
| Windows Mail to Outlook Express | Vista mail | |||
| Re: Outlook Express and Windows Mail NNTP Memory Corruption Vulnerability | Vista General | |||
| Re: Outlook express (windows mail) to outlook | Vista mail | |||
