Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
Software | From | Fixed in |
---|---|---|
microsoft / outlook_express | 5.5-sp2 | 5.5-sp2.x |
microsoft / outlook_express | 6.0 | 6.0.x |
microsoft / outlook_express | 6.0-sp1 | 6.0-sp1.x |