ID de Prueba:	1.3.6.1.4.1.25623.1.0.800083
Categoría:	Denial of Service
Título:	Microsoft Outlook Express Malformed MIME Message DoS Vulnerability
Resumen:	Microsoft Outlook Express is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Microsoft Outlook Express is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: Flaw is due to improper handling of multipart/mixed e-mail messages with many MIME parts and e-mail messages with many Content-type: message/rfc822 headers in MimeOleClearDirtyTree function of InetComm.dll file. Vulnerability Impact: Successful exploitation could result in application to crash. Affected Software/OS: Microsoft Outlook Express 6.x to 6.00.2900.5512. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5424 BugTraq ID: 32702 http://www.securityfocus.com/bid/32702 Bugtraq: 20081208 DoS attacks on MIME-capable software via complex MIME emails (Google Search) http://www.securityfocus.com/archive/1/499038/100/0/threaded Bugtraq: 20081209 Re: DoS attacks on MIME-capable software via complex MIME emails (Google Search) http://www.securityfocus.com/archive/1/499045/100/0/threaded http://mime.recurity.com/cgi-bin/twiki/view/Main/AttackIntro http://securityreason.com/securityalert/4721
Copyright	Copyright (C) 2008 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.