Synopsis
The remote host may be tricked into downloading a malicious file
Description
The remote host is running Outlook Express 5.0 for MacOS. This version of Express will automatically download attachments to HTML messages, without prompting the user. This weakness does not allow for a means of forcing the user to execute any code, or place files in a specific folder, but could be used in conjunction with other attacks.
Solution
Upgrade to the latest version.
Plugin Details
Vulnerability Information
CPE: cpe:/a:microsoft:outlook_express
Reference Information
BID: 883