Intrusion Prevention

MS.Outlook.Email.NULL.DoS

Description

Microsoft Outlook and Outlook Express has a denial-of-service vulnerability. A remote attacker could make the applications crash via an e-mail where an ASCII NULL character is encountered in the message body.

Affected Products

Microsoft Outlook 2002
Microsoft Outlook 2003
Microsoft Outlook Express 6.0

Impact

Denial of Service.

Recommended Actions

Currently we are not aware of any official supplied fix for this issue.