POP3: Outlook Express HR Tag Align Parameter Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Outlook Express. Attackers can embed a script in malicious HTML-formatted e-mail to dynamically set the "align" parameter to the "HR" tag.
Extended Description
Microsoft Windows platforms are prone to a boundary condition error in the HTML converter. If the 'Align' attribute of the 'HR' tag is given an excessively large value, an internal buffer will be overrun. This issue can be exploited via applications which use the HTML converter (such as Internet Explorer) and will permit arbitrary code to be executed on a vulnerable system.
Affected Products
Microsoft internet_explorer
Short Name
POP3:OUTLOOK:HRALIGN-OF
Severity
Warning
Recommended
False
Recommended Action
None
Category
POP3
Keywords
Align Buffer CVE-2003-0469 Express HR Outlook Overflow Parameter Tag bid:8016
Release Date
10/16/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.5