CVE-2007-3897

Published: Oct 9, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Heap-based buffer overflow in Microsoft Outlook Express 6 and earlier, and Windows Mail for Vista, allows remote Network News Transfer Protocol (NNTP) servers to execute arbitrary code via long NNTP responses that trigger memory corruption.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

1018785

vdb-entry

x_refsource_SECTRACK

HPSBST02280

vendor-advisory

x_refsource_HP

SSRT071480

vendor-advisory

x_refsource_HP

oval:org.mitre.oval:def:1706

vdb-entry

signature

x_refsource_OVAL

MS07-056

vendor-advisory

x_refsource_MS

20071010 Re: iDefense Security Advisory 10.09.07: Microsoft Windows Mail and Outlook Express NNTP Protocol Heap Overflow

mailing-list

x_refsource_BUGTRAQ

20071009 Microsoft Windows Mail and Outlook Express NNTP Protocol Heap Overflow

third-party-advisory

x_refsource_IDEFENSE

ADV-2007-3436

vdb-entry

x_refsource_VUPEN

1018786

vdb-entry

x_refsource_SECTRACK

25908

vdb-entry

x_refsource_BID

TA07-282A

third-party-advisory

x_refsource_CERT

27112

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-3897

Description

Affected Products

References