Microsoft KB Archive/892842

= Description of the Security Update for Outlook 2000: January 10, 2006 =

Article ID: 892842

Article Last Modified on 3/22/2007

-

APPLIES TO


 * Microsoft Outlook 2000 Standard Edition
 * Microsoft Office 2000 with MultiLanguage Pack

-





Microsoft has released security bulletin MS06-003. This security bulletin contains all the relevant information about the security update, including file manifest information and deployment options. To view the complete security bulletin, visit the following Microsoft Web site:  Home users:

http://www.microsoft.com/athome/security/update/bulletins/200601.mspx

 IT professionals:

http://www.microsoft.com/technet/security/bulletin/ms06-003.mspx





Security Update for Office 2000 Multilanguage Pack (KB892842)
A security vulnerability exists in Microsoft Outlook 2000 that could allow arbitrary code to run when opening a maliciously modified email. This security update resolves that vulnerability when Outlook 2000 is used with a Multilanguage Pack. To download security update 892842, visit the following Microsoft Web site:

http://www.microsoft.com/downloads/details.aspx?FamilyId=2C0FA7C7-91AA-49B4-9731-9E83E3E0823D

Security Update for Outlook 2000 English Multilanguage Pack (KB893142)
A security vulnerability exists in Microsoft Outlook 2000 that could allow arbitrary code to run when opening a maliciously modified email. This update resolves that vulnerability when Outlook 2000 is used with the English Multilanguage Pack. To download the security update 893142, visit the following Microsoft Web site:

http://www.microsoft.com/downloads/details.aspx?FamilyId=2C0FA7C7-91AA-49B4-9731-9E83E3E0823D

List of issues that the security update fixes
The security update fixes the issues that are described in the following hotfix package:

811167 Description of the Outlook 2000 update: December 18, 2002

The security update fixes the issues that are described in the following Microsoft Knowledge Base articles:

324977 You Cannot Change Your Password When the You Log On to a Non-Exchange Domain in Outlook 2000

329554 &quot;Could not complete the operation...&quot; error message when you click Reply

323537 You receive an error message when you select many Exchange 2000 recipients in Outlook 2000

325412 You cannot access attachments that are in signed e-mail messages with the OpenAttach call

324841 Access violation using MAPIUninitialize after accessing IMAP store

329119 Outlook stops responding when you use the GetIDsFromName or the GetNamesFromIDs calls with an IAttach interface on a secure e-mail message

327059 Error message when you try to modify an entry in your Personal Address Book

328508 You receive an error message when you use the CDO 'GetRecurrencePattern' method to write a program for recurring information

321179 You may receive reminders later than you should

812936 Attachment to signed e-mail message is missing when you send the message to a public folder

811945 &quot;File not found&quot; error message when you use the common dialog DLL to open multiple Outlook message files and you have Office 2000 SP-3 installed

818849 Cannot create profile for hidden mailbox on an Exchange 2000 server

820838 E-mail messages that you created while offline are sent to the wrong recipient

829337 Outlook 2000 post-Service Pack 3 hotfix package: September 30, 2003

835233 Outlook 2000 post-Service Pack 3 hotfix package: February 4, 2004

839648 Outlook 2000 post-Service Pack 3 hotfix package: April 9, 2004

838346 Outlook 2000 post-Service Pack 3 hotfix package: March 25, 2004

842312 Description of the Outlook 2000 post-Service Pack 3 hotfix package: May 20, 2004

Removal information
After you install the Security Update for Office 2000 Multilanguage Pack (KB892842), you cannot remove the update. To revert to an earlier installation of Outlook 2000, you must remove Microsoft Office 2000 and then reinstall it from the original installation disk.

Additional query words: update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE OL2000 MUI EMP OFF2000

Keywords: kbqfe kbsecurity kbsecbulletin kbsecvulnerability kbbug kbpubtypekc kbfix kbupdate kbdownload atdownload KB892842

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.