Secunia
Login
|
|
CVE Reference: CVE-2010-0816 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2010-0816 |
|
|
Description: Integer overflow in inetcomm.dll in Microsoft Outlook Express 5.5 SP2, 6, and 6 SP1; Windows Live Mail on Windows XP SP2 and SP3, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7; and Windows Mail on Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote e-mail servers and man-in-the-middle attackers to execute arbitrary code via a crafted (1) POP3 or (2) IMAP response, as demonstrated by a certain +OK response on TCP port 110, aka "Outlook Express and Windows Mail Integer Overflow Vulnerability." |
|
|
CVE Status: Candidate |
|
|
References: OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6734 MS http://www.microsoft.com/technet/security/Bulletin/MS10-030.mspx MISC http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=13&Itemid=13 CERT http://www.us-cert.gov/cas/techalerts/TA10-131A.html BUGTRAQ http://archives.neohapsis.com/archives/bugtraq/2010-05/0068.html BID 40052 |
|
| Return to the previous page. |
