Tesseract Posted October 11, 2002 Share Posted October 11, 2002 http://rss.com.com/2100-1001-961769.html?t...=feed&subj=news Microsoft warned Outlook Express users late Thursday that a software flaw could allow an online vandal to control their computers. A critical vulnerability in the e-mail reader could allow an attacker to send a specially formatted message that would crash the software and potentially take control of the recipient's computer. The flaw occurs in how the software handles messages that include components using secure MIME (multipurpose Internet mail extensions), a standard that allows e-mail messages to contain encrypted data and digital signatures. "Outlook Express ships with every Windows system, or rather as part of IE, so it's on every system. But unless it is configured to receive mail, you are not at risk," said Scott Culp, manager for Microsoft security response. Microsoft Outlook Express 5.5 and 6.0 are both affected. Earlier versions of the software giant's default e-mail application may also carry the flaw, but Microsoft hasn't tested the applications because they are no longer supported. Microsoft Outlook, the giant's full-featured e-mail and workgroup software, is not affected, Culp said. Link to comment Share on other sites More sharing options...
powerdafuture Posted October 11, 2002 Share Posted October 11, 2002 good thing i dont have outlook express as my mail client Link to comment Share on other sites More sharing options...
Tesseract Posted October 11, 2002 Author Share Posted October 11, 2002 Well I use OE for newsgroups, but this apparently only affects e-mail messages. Link to comment Share on other sites More sharing options...
freeza Posted October 11, 2002 Share Posted October 11, 2002 i use outlook express : Link to comment Share on other sites More sharing options...
RomeoXP1.0.8.6. Posted October 11, 2002 Share Posted October 11, 2002 Originally posted by freeza i use outlook express : And the address to which is?????........... Link to comment Share on other sites More sharing options...
yashiro Posted October 11, 2002 Share Posted October 11, 2002 Just in case anyone is wondering - this issue is resolved already by SP1. If you are running OE6 SP1 then you don't need the patch. Link to comment Share on other sites More sharing options...
Hypercube Posted October 11, 2002 Share Posted October 11, 2002 Originally posted by yashiro Just in case anyone is wondering - this issue is resolved already by SP1. If you are running OE6 SP1 then you don't need the patch. Nice to know. :p Link to comment Share on other sites More sharing options...
Recommended Posts