CVE-2005-1213

Name of the Vulnerable Software and Affected Versions Microsoft Outlook Express versions 5.5 SP2 through 6 SP1

Description A stack-based buffer overflow issue exists in the news reader component of Microsoft Outlook Express, allowing remote malicious NNTP servers to execute arbitrary code. This can be achieved by sending a LIST response with a long second field.

Recommendations For versions 5.5 SP2 through 6 SP1, consider disabling the news reader functionality until a patch is available. Restrict access to potentially malicious NNTP servers to minimize the risk of exploitation. Avoid using the affected news reader component in Microsoft Outlook Express until the issue is resolved.