The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Microsoft Windows Mail

Windows Mail, Meeting Space: code execution via DLL Preload
An attacker can create a malicious DLL and invite the victim to open a document in the same directory, in order to execute code...
2620704, BID-50507, CERTA-2011-AVI-623, CVE-2011-2016, MS11-085, VIGILANCE-VUL-11135
Outlook Express, Windows Mail: code execution
An attacker can setup a malicious POP/IMAP server, and invite the victim to connect with Outlook Express or Windows Mail, in order to execute code on his computer...
978542, BID-39927, CERTA-2010-AVI-205, CVE-2010-0816, MS10-030, VIGILANCE-VUL-9635
MIME: denial of service by encapsulation
An attacker can create an email containing deep MIME encapsulations in order to create a denial of service in several applications...
BID-32702, CVE-2008-5424, CVE-2008-5425, CVE-2008-5426, CVE-2008-5427, CVE-2008-5428, VIGILANCE-VUL-8296
Outlook, Windows Mail, Office: HTTP connection via X.509
An attacker can use a malicious X.509 certificate in order to force a program to send a HTTP query...
AKLINK-SA-2008-002, AKLINK-SA-2008-003, AKLINK-SA-2008-004, BID-28548, VIGILANCE-VUL-7726
Outlook Express, Windows Mail: buffer overflow via NNTP
An attacker can setup a malicious NNTP server in order to execute code on computer of victims who connect to this server...
941202, BID-25908, CERTA-2007-AVI-431, CVE-2007-3897, MS07-056, VIGILANCE-VUL-7218
OE, Windows Mail: several vulnerabilities
Several vulnerabilities of Outlook Express or Windows Mail lead to information disclosure or to code execution...
929123, BID-17717, BID-23103, BID-24392, BID-24410, CERTA-2007-AVI-259, CVE-2006-2111, CVE-2007-1658, CVE-2007-2225, CVE-2007-2227, MS07-034, VIGILANCE-VUL-6907, VU#682825, VU#783761
Windows Mail: command execution
When user clicks on a command which has the same name as a directory, it is executed without warning...
929123, BID-23103, CVE-2007-1658, MS07-034, VIGILANCE-VUL-6679
Outlook Express, Internet Explorer: access to data of another site via mhtml
An attacker can create a website using a redirection and a mhtml: uri in order to access data of another web site...
929123, BID-17717, CVE-2006-2111, MS07-034, VIGILANCE-VUL-6253
Our database contains other pages. You can request a free trial to read them.