PT-2001-1378 · Microsoft · Outlook+1

Publicado

2001-04-04

Atualizado

2018-10-12

CVE-2001-0145

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Outlook versions 2000 and 98 Outlook Express version 5.x

Description: A buffer overflow issue exists in the VCard handler, allowing an attacker to execute arbitrary commands by exploiting a malformed vCard birthday field.

Recommendations: For Outlook versions 2000 and 98, consider disabling the VCard handler until a patch is available. For Outlook Express version 5.x, restrict the processing of vCard birthday fields to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2001-0145

Produtos afetados

Outlook

Outlook Express

PT-2001-1378 · Microsoft · Outlook+1

CVE-2001-0145

Identificadores relacionados

Produtos afetados

Referências · 3