CVE-2006-0014

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook Express
Vendor: CVE Published:; 12 April 2006

Summary

Buffer overflow in Microsoft Outlook Express 5.5 and 6 allows remote attackers to execute arbitrary code via a crafted Windows Address Book (WAB) file containing "certain Unicode strings" and modified length values.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://securitytracker.com/id?1015898

vdb-entryx_refsource_SECTRACK

EPSS Score

63% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 12, 2006
Vulnerability Reserved
Nov 9, 2005

Collectors

NVD DatabaseMitre Database