Intrusion Prevention

MS.Outlook.Ole32.ActiveX.DoS

Description

This indicates an attack attempt to exploit a memory corruption vulnerability
in Microsoft Outlook.
It may allow remote attackers to execute arbitrary code in the context of the application using the affected ActiveX control. Failed exploit attempts will likely result in a Denial of Service condition.

Affected Products

Microsoft Outlook XP
Microsoft Outlook 98
Microsoft Outlook 97
Microsoft Outlook 2003
Microsoft Outlook 2002 SP3
Microsoft Outlook 2002 SP2
Microsoft Outlook 2002 SP1
Microsoft Outlook 2000 SP3
Microsoft Outlook 2000 SP2

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

CVE References

CVE-2006-6659