Vulnerabilities > CVE-2002-1179 - Buffer Overflow vulnerability in Microsoft Outlook Express S/MIME
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Buffer overflow in the S/MIME Parsing capability in Microsoft Outlook Express 5.5 and 6.0 allows remote attackers to execute arbitrary code via a digitally signed email with a long "From" address, which triggers the overflow when the user views or previews the message.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | Microsoft Outlook Express 5.5/6.0 S/MIME Buffer Overflow Vulnerability. CVE-2002-1179. Remote exploit for windows platform |
| id | EDB-ID:21932 |
| last seen | 2016-02-02 |
| modified | 2002-10-10 |
| published | 2002-10-10 |
| reporter | Noam Rathaus |
| source | https://www.exploit-db.com/download/21932/ |
| title | Microsoft Outlook Express 5.5/6.0 S/MIME Buffer Overflow Vulnerability |
References
- http://marc.info/?l=bugtraq&m=103435413105661&w=2
- http://marc.info/?l=ntbugtraq&m=103429637822920&w=2
- http://marc.info/?l=ntbugtraq&m=103429681123297&w=2
- http://www.iss.net/security_center/static/10338.php
- http://www.securityfocus.com/bid/5944
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-058