IP: Vulnerability in Outlook Vcards (was: lookOut!)

[David Farber <dave () farber net>]

> Date: Sat, 24 Feb 2001 19:41:48 -0500
> To: farber () cis upenn edu
> From: David Chessler <chessler () usa net>
>
> Another vulnerability in MS's Outlook and Outlook Express. A malicious 
> person could insert code in a VCARD which would, when read, cause a buffer 
> overflow and run a program on your machine. There is a patch. However, the 
> immediate solution is never to open a VCARD from someone who isn't trusted 
> (it's not stated whether the program could send a VCARD that appears to be 
> from a trusted person).
>
> Or remove Outlook and Outlook express from your computer
>
> * Original: FROM..... Seth Milder (on Computerguys-L)
>
> http://www.wired.com/news/technology/0,1282,41994,00.html
> http://www.microsoft.com/technet/security/bulletin/MS01-012.asp



For archives see: http://www.interesting-people.org/