Outlook Express Attachment Carriage Return/Linefeed Encapsulation Filtering Bypass Vulnerability

Bugtraq ID:	4092
Class:	Design Error
CVE:	CAN-2002-0285
Remote:	Yes
Local:	No
Published:	Feb 13 2002 12:00AM
Updated:	Feb 13 2002 12:00AM
Credit:	This vulnerability was discovered by Valentijn Sessink <valentyn+bugtraq@nospam.openoffice.nl>.
Vulnerable:	Microsoft Outlook Express 5.5 + Microsoft Internet Explorer 5.0.1 for Windows NT 4.0 + Microsoft Internet Explorer 5.0.1 for Windows NT 4.0 + Microsoft Internet Explorer 5.0.1 for Windows 98 + Microsoft Internet Explorer 5.0.1 for Windows 98 + Microsoft Internet Explorer 5.0.1 for Windows 95 + Microsoft Internet Explorer 5.0.1 for Windows 95 + Microsoft Internet Explorer 5.0.1 for Windows 2000 + Microsoft Internet Explorer 5.0.1 for Windows 2000 + Microsoft Internet Explorer 5.0.1 + Microsoft Internet Explorer 5.0.1 + Microsoft Internet Explorer 5.5 + Microsoft Internet Explorer 5.5 - Microsoft Windows 2000 Professional - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows 98 - Microsoft Windows 98SE - Microsoft Windows 98SE - Microsoft Windows NT 4.0 - Microsoft Windows NT 4.0

Not Vulnerable: