Check Point Advisories

IPS-1 Protection for Outlook NNTP Vulnerability (CVE-2007-3897/MS07-056)

Check Point Reference: CPAI-2007-204
Date Published: 11 Oct 2007
Severity: High
Last Updated: Monday 01 January, 2007
Source: iDefense Advisory
Industry Reference:CVE-2007-3897
Protection Provided by:
Who is Vulnerable?
  • Outlook Express 5.5 SP2/Outlook Express 6 SP1 under Windows 2000 SP4
  • Outlook Express 6 under Windows XP, Windows XP Pro, Windows 2003 SP1-SP2
  • Windows Mail under Vista and Vista x64 Edition
Vulnerability Description

Several versions of Microsoft Outlook have vulnerabilities in their handling of NNTP headers that could result in arbitrary code execution.
Update/Patch AvaliableA patch is available through Microsoft.  See MS07-056 for more information.
Vulnerability Details

The Microsoft Outlook NNTP reader has a vulnerability in the handling of the response data to the "XHDR" command.  If a malicious server sends more items than were requested, this can trigger a heap overflow resulting in remote code execution.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK