oval:org.mitre.oval:def:1682

Definition Id: oval:org.mitre.oval:def:1682

Oval ID:	oval:org.mitre.oval:def:1682
Title:	Microsoft Outlook Express 6,SP1 WAB Remote Code Execution Vulnerability
Description:	Buffer overflow in Microsoft Outlook Express 5.5 and 6 allows remote attackers to execute arbitrary code via a crafted Windows Address Book (WAB) file containing "certain Unicode strings" and modified length values.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-0014	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP	Product(s):	Microsoft Outlook Express
Definition Synopsis:
Windows XP,SP1 32-bit or Win2K,SP4 is installed Windows XP,SP1 32-bit is installed Windows XP is installed AND Win2K/XP/2003 service pack 1 is installed AND NOT 64-Bit version of Windows is installed OR Windows 2000 Service Pack 4 (or later) is installed Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or later) is installed AND Microsoft Outlook Express 6 SP1 is installed AND the version of inetcomm.dll is less than 6.0.2800.1807