CVE-2002-1179

Microsoft Outlook Express <6.0 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1179. PoCs published by Noam Rathaus.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Microsoft Outlook Express 5.5 and 6.0, specifically in the handling of digital signature warning messages. It crafts a malicious email with a specially formatted MIME message to trigger arbitrary code execution in the context of the current user.

Description

Buffer overflow in the S/MIME Parsing capability in Microsoft Outlook Express 5.5 and 6.0 allows remote attackers to execute arbitrary code via a digitally signed email with a long "From" address, which triggers the overflow when the user views or previews the message.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Noam Rathaus · perlremotewindows

https://www.exploit-db.com/exploits/21932

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Microsoft Outlook Express 5.5 and 6.0, specifically in the handling of digital signature warning messages. It crafts a malicious email with a specially formatted MIME message to trigger arbitrary code execution in the context of the current user.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Outlook Express 5.5 and 6.0

No auth needed

Prerequisites: SMTP server access · Target email address · Vulnerable version of Outlook Express

MITRE ATT&CK