Oval Definition:	oval:org.mitre.oval:def:1316
Revision Date: 2006-02-22 Version: 1 Title: Exchange Server 5.0 TNEF Decoding Vulnerability Description: Unspecified vulnerability in Microsoft Outlook 2000 through 2003, Exchange 5.0 Server SP2 and 5.5 SP4, Exchange 2000 SP3, and Office allows remote attackers to execute arbitrary code via an e-mail message with a crafted Transport Neutral Encapsulation Format (TNEF) MIME attachment, related to message length validation. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-0002 Platform(s): Microsoft Windows 2000 Microsoft Windows NT Microsoft Windows Server 2003 Microsoft Windows XP Product(s): Microsoft Outlook Definition Synopsis the version of Mdbmsg.dll greater than or equal 5.0.1460.9 (Exchange Server 5.0,SP2 is installed). AND the version of Mdbmsg.dll is less than 5.0.1462.22
BACK