CVE-2010-0816

Microsoft Outlook Express <6 SP1 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-0816. PoCs published by Francis Provencher.

AI-analyzed exploit summary This exploit targets a remote integer overflow vulnerability in Microsoft Outlook Express and Windows Mail by sending a specially crafted response to a client initiating a connection to a server under the attacker's control. The PoC simulates a malicious POP3 server that triggers the vulnerability during the mail protocol handshake.

Description

Integer overflow in inetcomm.dll in Microsoft Outlook Express 5.5 SP2, 6, and 6 SP1; Windows Live Mail on Windows XP SP2 and SP3, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7; and Windows Mail on Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote e-mail servers and man-in-the-middle attackers to execute arbitrary code via a crafted (1) POP3 or (2) IMAP response, as demonstrated by a certain +OK response on TCP port 110, aka "Outlook Express and Windows Mail Integer Overflow Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Francis Provencher · textdoswindows

https://www.exploit-db.com/exploits/12564

View Code ZIP pw:eip

This exploit targets a remote integer overflow vulnerability in Microsoft Outlook Express and Windows Mail by sending a specially crafted response to a client initiating a connection to a server under the attacker's control. The PoC simulates a malicious POP3 server that triggers the vulnerability during the mail protocol handshake.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Outlook Express, Microsoft Windows Mail (Vista SP1, Windows Server 2008 SP1)

No auth needed

Prerequisites: Victim must connect to a malicious POP3 server controlled by the attacker

MITRE ATT&CK