MS Outlook iCal Meeting Request VEVENT Record Memory Corruption (MS07-003; CVE-2007-0033)

Microsoft provides server and client side implementations of email protocols such as SMTP, POP3 and IMAP. The widely used Microsoft Outlook product is an implementation of an email client capable of handling most standard Internet protocols as well as numerous proprietary Microsoft protocols and...

Design/Logic Flaw

Microsoft Outlook 2002 and 2003 allows user-assisted remote attackers to execute arbitrary code via a malformed VEVENT record in an .iCal meeting request or ICS file...

CVE-2007-0033

Microsoft Outlook 2002 and 2003 allows user-assisted remote attackers to execute arbitrary code via a malformed VEVENT record in an .iCal meeting request or ICS file...

CVE-2007-0033

Microsoft Outlook 2002 and 2003 allows user-assisted remote attackers to execute arbitrary code via a malformed VEVENT record in an .iCal meeting request or ICS file...

CVE-2007-0033

CVE-2007-0033 is a memory corruption/remote code execution vulnerability in Microsoft Outlook 2002 and 2003 triggered by parsing a malformed VEVENT record in an iCalendar (.ics) file or meeting request. The flaw arises from inadequate validation when processing VEVENT data, enabling a user-assist...

Microsoft Outlook fails to properly process a VEVENT record

Overview Microsoft Outlook contains a memory corruption vulnerability that could enable an attacker to execute arbitrary code and gain complete control of the vulnerable system. Description Microsoft Outlook fails to properly handle malformed VEVENT records. When an .iCal meeting request containi...