Run all software as a nonprivileged user with minimal access rights.
Running client software as an unprivileged user with minimal access rights will reduce the impact of this and similar vulnerabilities.
Do not follow links provided by unknown or untrusted sources.
This issue could be exploited from a malicious web page. Users should be wary of visiting web pages of questionable integrity, especially if enticed to do so by an untrusted or unfamiliar source.
Do not accept communications that originate from unknown or untrusted sources.
This issue could be exploited via HTML e-mail in some circumstances. Support for HTML e-mail should be disabled in the client if not required. Users should also not open e-mails originating from an untrusted or unfamiliar source. Where possible, HTML may also be filtered from incoming mail.
Microsoft has released a security bulletin (MS04-009) and patches for Outlook 2002 and Office XP (which includes the vulnerable component). This issue has also been addressed in Outlook 2002 SP3 and Office XP SP3. Users are advised to upgrade.