248 matches found
Microsoft Outlook Express 6.0 - MHTML Forced File Execution (2)
source: https://www.securityfocus.com/bid/9105/info A vulnerability has been discovered in Microsoft Outlook Express when handling MHTML file and res URIs that could lead to an unexpected file being downloaded and executed. The problem occurs due to the component failing to securely handle MHTML...
Microsoft Outlook Express 6.0 - '.MHTML' Forced File Execution (1)
source: https://www.securityfocus.com/bid/9105/info A vulnerability has been discovered in Microsoft Outlook Express when handling MHTML file and res URIs that could lead to an unexpected file being downloaded and executed. The problem occurs due to the component failing to securely handle MHTML...
Microsoft Internet Explorer and Outlook Express MHTML rendering engine incorrectly executes script in Local Computer Zone
Overview There is an MHTML input validation vulnerability in Outlook Express that may lead to arbitrary command and code execution in the Local Computer Zone of a victim host. Description Microsoft systems use components of Microsoft Outlook Express to render MHTML MIME Encapsulation of Aggregate...
Microsoft Security Bulletin MS03-014: Cumulative Patch for Outlook Express (330994)
-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Cumulative Patch for Outlook Express 330994 Date: 23 April 2003 Software: Microsoft c Outlook Express Impact: Run code of the attacker's choice on a user's machine. Max Risk: Critica...
Microsoft Outlook Express 56 - MHTML URL Handler File Rendering
Microsoft Outlook Express 56 - MHTML URL Handler File Rendering source: https://www.securityfocus.com/bid/5473/info Microsoft Outlook Express introduced a URL handler called MHTML MIME Encapsulation of Aggregate HTML. This allows Internet Explorer to pass MHTML files to Outlook Express for...
Microsoft Outlook Express 5/6 - MHTML URL Handler File Rendering
source: https://www.securityfocus.com/bid/5473/info Microsoft Outlook Express introduced a URL handler called MHTML MIME Encapsulation of Aggregate HTML. This allows Internet Explorer to pass MHTML files to Outlook Express for rendering. The MHTML URL handler does not validate the file type it is...
Code execution via Eudora
Using META REFRESH it's possible to launch mhtml file...
ICQ and MSIE allow execution of arbitrary code
Outline qoute I was about to put on a home page right after I discovered it and still had a hope that I will be that one who will finally destroy the world :: /quote Well i dont know if it will destroy the world, but sure enough it's enough to destory a small portion off it : Actually i found the...