QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2010-0816

Back to search

CVE-2010-0816

Published: May 12, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

Integer overflow in inetcomm.dll in Microsoft Outlook Express 5.5 SP2, 6, and 6 SP1; Windows Live Mail on Windows XP SP2 and SP3, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7; and Windows Mail on Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote e-mail servers and man-in-the-middle attackers to execute arbitrary code via a crafted (1) POP3 or (2) IMAP response, as demonstrated by a certain +OK response on TCP port 110, aka "Outlook Express and Windows Mail Integer Overflow Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

MS10-030
vendor-advisory
x_refsource_MS
TA10-131A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:6734
vdb-entry
signature
x_refsource_OVAL
40052
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now