Reported February 22, 2001, by Microsoft.
- Microsoft Outlook
- Microsoft Outlook Express
A buffer overflow has been discovered in the vCard handler of Microsoft Outlook and Outlook Express. By sending a specially crafted vCard, a malicious user can cause the mail client to fail and possibly launch arbitrary code.
Microsoft has released a security bulletin, MS01-012, and a patch to address the issue.
Discovered by @Stake.