VULHUB ™

Outlook Express 5.0 for Macintosh has a weakness that will allow an attacker to place a file on the victim host by sending an HTML message containg specific instructions. OE5 will then download the file with no warning or notification to the user. This file will be placed in the default Downloads folder on the target. This file can be anexecutable, but the OE weakness does not provide for remote execution.

Outlook Express 5.0 for Macintosh has a weakness that will allow an attacker to place a file on the victim host by sending an HTML message containg specific instructions. OE5 will then download the file with no warning or notification to the user. This file will be placed in the default Downloads folder on the target. This file can be anexecutable, but the OE weakness does not provide for remote execution.