From alerts@us-cert.gov Wed Mar 10 22:42:33 2004 From: US-CERT Alerts To: alerts@us-cert.gov Date: Wed, 10 Mar 2004 21:21:49 -0500 Subject: US-CERT Cyber Security Alert SA04-070A -- Vulnerability in Microsoft Outlook 2002 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Vulnerability in Microsoft Outlook 2002 Original release date: March 10, 2004 Last revised: -- Source: US-CERT Systems Affected Systems running Microsoft Office XP and Outlook 2002 Overview There is a vulnerability in Outlook 2002 that could allow attackers to take control of your computer. Description By taking advantage of the way Outlook interprets email links, an attacker may be able to gain control of your computer. A technical description of these vulnerabilities is available from US-CERT in TA04-070A and from Microsoft in MS04-009. Resolution Apply a patch Microsoft's Office Security Update for March 2004 links to the necessary patches. References * US-CERT Technical Alert TA04-070A - * Microsoft's Office Security Update for March 2004 - * Microsoft Security Bulletin MS04-009 - _________________________________________________________________ This document is available from _________________________________________________________________ Copyright 2004 Carnegie Mellon University. Terms of use, see Revision History March 10, 2004: Initial release -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQFAT8xpXlvNRxAkFWARAjPoAKC590q18f682ioznuHH3weDfcOUrACfS2u/ QROxIl92AAxtfo8z3C3Ccmc= =3jgR -----END PGP SIGNATURE-----