Patch Available for OCX Attachment Vulnerability (274303)
The information in this article applies to:
- Microsoft Outlook Express 5.5 for Windows NT 4.0
- Microsoft Outlook Express 5.01 for Windows NT 4.0
- Microsoft Outlook Express 5.5 for Windows 2000
- Microsoft Outlook Express 5.0 for Windows NT 4.0
- Microsoft Outlook Express 5.5 for Windows Millennium Edition
- Microsoft Outlook Express 5.5 for Windows 98 Second Edition
- Microsoft Outlook Express 5.01 for Windows 98 Second Edition
- Microsoft Outlook Express 5.0 for Windows 98 Second Edition
- Microsoft Outlook Express 5.5 for Windows 98
- Microsoft Outlook Express 5.01 for Windows 98
- Microsoft Outlook Express 5.0 for Windows 98
- Microsoft Outlook Express 5.01 for Windows 2000
- Microsoft Windows Media Player 7
- Microsoft Outlook 2000
This article was previously published under Q274303 SYMPTOMS Microsoft has released a patch that eliminates a security
vulnerability that could enable a malicious user to create an e-mail attachment
that could cause your e-mail program to shut down. This situation occurs when
you close the affected e-mail message, resulting in the following error
message: This program has performed an illegal operation
and will be shut down. If you click Details, you may receive the following error message:
OUTLOOK caused an invalid page fault in module Wmp.ocx
at address NOTE: This vulnerability does not occur unless both Windows Media
Player 7 and Outlook or Outlook Express are installed on your computer. This
vulnerability does not cause any lasting effects. You can resume normal
operation by restarting your mail program and deleting the affected mail.
Although the affected ActiveX control (OCX) is associated with Windows Media
Player, it poses no threat to Windows Media Player; the vulnerability can be
used only against e-mail clients. Additional information about this
issue is available from the following Microsoft Web site: RESOLUTIONThe
following file is available for download from the Microsoft Download
Center: For
additional information about how to download Microsoft Support files, click the
following article number to view the article in the Microsoft Knowledge Base: 119591 How to Obtain Microsoft Support Files from Online Services
Microsoft scanned this file for viruses. Microsoft used the most
current virus-detection software that was available on the date that the file
was posted. The file is stored on security-enhanced servers that help to
prevent any unauthorized changes to the file.
The English version of this fix should have the
following file attributes or later:
Date Time Version Size File name
-------------------------------------------------
9/19/2000 09:38a 7.0.0.1956 176,400 Wmp.ocx
STATUSMicrosoft
has confirmed that this is a problem in the Microsoft products that are listed
at the beginning of this article.
| Modification Type: | Minor | Last Reviewed: | 8/9/2004 |
|---|
| Keywords: | kbdownload kberrmsg kbgraphxlinkcritical kbprb KB274303 |
|---|
|
