Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Microsoft Outlook IFrame Embedded URL Vulnerability

Microsoft Outlook IFrame Embedded URL Vulnerability

by Nikola Strahija on March 24th, 2002 An issue has been reported in Microsoft Outlook which could initiate a file download from a web site, without the user attempting to access the site.


Reportedly this is possible if a user simply reads an HTML email message containing a URL embedded in the IFrame tag. If the URL is pointing to a file, upon the user opening the mail message, Outlook will prompt the user with a download dialog box.

This issue could be used to initiate the download of malicious files, or exploit other known IE issues.

Remote: Yes

Exploit: No


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »