https://www.betaarchive.com/wiki/index.php?title=Microsoft_KB_Archive/247638&feed=atom&action=history
Microsoft KB Archive/247638 - Revision history
2024-03-29T15:56:35Z
Revision history for this page on the wiki
MediaWiki 1.39.3
https://www.betaarchive.com/wiki/index.php?title=Microsoft_KB_Archive/247638&diff=253932&oldid=prev
X010: Text replacement - "[[File:../gfx/" to "[[File:"
2020-07-19T16:09:46Z
<p>Text replacement - "[[File:../gfx/" to "[[File:"</p>
<table style="background-color: #fff; color: #202122;" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="en-GB">
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">← Older revision</td>
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">Revision as of 16:09, 19 July 2020</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l105">Line 105:</td>
<td colspan="2" class="diff-lineno">Line 105:</td></tr>
<tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div><div class="indent"></div></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div><div class="indent"></div></td></tr>
<tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br/></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br/></td></tr>
<tr><td class="diff-marker" data-marker="−"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>[[File:<del style="font-weight: bold; text-decoration: none;">../gfx/</del>download.gif|[GRAPHIC: Download]]][http://www.microsoft.com/windows/ie/download/critical/patch9.htm Download Q261255.exe now]</div></td><td class="diff-marker" data-marker="+"></td><td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>[[File:download.gif|[GRAPHIC: Download]]][http://www.microsoft.com/windows/ie/download/critical/patch9.htm Download Q261255.exe now]</div></td></tr>
<tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br/></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br/></td></tr>
<tr><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br/></td><td class="diff-marker"></td><td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br/></td></tr>
</table>
X010
https://www.betaarchive.com/wiki/index.php?title=Microsoft_KB_Archive/247638&diff=136158&oldid=prev
3155ffGd: importing KB archive
2020-07-18T16:13:44Z
<p>importing KB archive</p>
<p><b>New page</b></p><div><div id="nsbanner"><br />
<br />
<div id="bannerrow1"><br />
<br />
{|<br />
| Knowledge Base<br />
|<br />
|}<br />
<br />
<br />
</div><br />
<div id="TitleRow"><br />
<br />
= <span id="KB247638"></span>OLEXP: Cache Bypass Vulnerability Fix Available =<br />
<br />
<br />
</div><br />
<br />
</div><br />
<div id="nstext" valign="BOTTOM"><br />
<br />
Article ID: 247638<br />
<br />
Article Last Modified on 1/25/2007<br />
<br />
<br />
-----<br />
<br />
APPLIES TO<br /><br />
<br /><br />
<br />
* Microsoft Outlook Express 5.01 Service Pack 2<br />
* Microsoft Outlook Express 5.0<br />
* Microsoft Outlook Express 4.01 Service Pack 1<br />
* Microsoft Outlook Express 4.01 Service Pack 2<br />
* Microsoft Outlook Express 4.0<br />
* Microsoft Outlook Express 5.01 Service Pack 2<br />
* Microsoft Outlook Express 5.0<br />
* Microsoft Outlook Express 5.01 Service Pack 1<br />
* Microsoft Outlook Express 5.0<br />
* Microsoft Outlook Express 4.01 Service Pack 1<br />
* Microsoft Outlook Express 4.01 Service Pack 2<br />
* Microsoft Outlook Express 5.01<br />
* Microsoft Outlook Express 5.0<br />
* Microsoft Outlook Express 4.01 Service Pack 1<br />
* Microsoft Outlook Express 4.01 Service Pack 2<br />
* Microsoft Outlook Express 4.0<br />
* Microsoft Outlook 98 Standard Edition<br />
* Microsoft Outlook 2000 Standard Edition<br />
<br />
<br />
-----<br />
<br />
<div class="notice_section"><br />
<br />
This article was previously published under Q247638<br />
<br />
</div><br />
<div class="notice_section"><br />
<br />
For information about the differences between Microsoft Outlook Express and Microsoft Outlook e-mail clients, click the following article number to view the article in the Microsoft Knowledge Base:<br />
<div class="indent"><br />
<br />
[[../257824|257824]] OL2000: Differences Between Outlook and Outlook Express<br />
<br />
<br />
</div><br />
<br />
</div><br />
<div class="symptoms_section"><br />
<br />
== SYMPTOMS ==<br />
<br />
Microsoft has released a update that eliminates a security vulnerability in Outlook and Outlook Express. This vulnerability can allow a malicious e-mail message author to send a Hypertext Markup Language (HTML) e-mail message that, when opened, can read files on your computer. The malicious message cannot, however, add, change, or delete any messages. If this is coupled with other vulnerabilities, it can potentially be used in more advanced attacks. Only files that you can open in a browser window (such as .txt, .jpg, or .htm files) can be read by using this vulnerability. To read these messages, the malicious user must know or guess the full path and file name of every file that they want to read.<br /><br />
<br /><br />
Additional information about this issue is available on the following Microsoft Web site:<br />
<div class="indent"><br />
<br />
http://www.microsoft.com/technet/security/bulletin/ms00-046.asp<br />
<br />
<br />
</div><br />
You can find frequently asked questions about this vulnerability on the following Microsoft Web site:<br />
<div class="indent"><br />
<br />
http://www.microsoft.com/technet/security/bulletin/fq00-046.mspx<br />
<br />
<br />
</div><br />
<br />
</div><br />
<div class="cause_section"><br />
<br />
== CAUSE ==<br />
<br />
This behavior occurs because e-mail messages in the Hypertext Markup Language (HTML) format can create files that are stored outside of cache and they can therefore run in less restricted security zones.<br />
<br />
</div><br />
<div class="resolution_section"><br />
<br />
== RESOLUTION ==<br />
<br />
The following file is available for download from the Microsoft Download Center:<br /><br />
<br />
<div class="indent"><br />
<br />
[[File:../gfx/download.gif|[GRAPHIC: Download]]][http://www.microsoft.com/windows/ie/download/critical/patch9.htm Download Q261255.exe now]<br />
<br />
<br />
</div><br />
For additional information about how to download Microsoft Support files, click the following article number to view the article in the Microsoft Knowledge Base:<br />
<div class="indent"><br />
<br />
[[../119591|119591]] How to Obtain Microsoft Support Files from Online Services<br />
<br />
<br />
</div><br />
Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help to prevent any unauthorized changes to the file. The Q261255.exe file contains the following files:<br />
* Inetcomm.dll<br />
* Msoe.dll<br />
* Msoert2.dll<br />
<br />
=== Error Message When You Try to Install the Security Update ===<br />
<br />
This update may not appear when you click '''Product Updates''' on the Microsoft Windows Update Web site, or you may receive the following message when you install this update from the Microsoft Download Center:<br />
<div class="errormessage"><br />
<br />
This update does not need to be installed on this system.<br />
<br />
</div><br />
Updates are available only for Microsoft Internet Explorer 5.01. Internet Explorer versions 4.0, 4.01, 4.01 Service Pack 1, 4.01 Service Pack 2, and 5, are also vulnerable to this issue, but if you run the update on a version of Internet Explorer earlier than Internet Explorer 5.01, you may receive the message that says the update is already installed on your computer. This update is not listed as a critical update on the Microsoft Windows Update Web site unless you are running Internet Explorer 5.01.<br /><br />
<br /><br />
Microsoft recommends that you upgrade to Internet Explorer 5.01 and then install this update.<br /><br />
<br /><br />
For additional information about how to determine which version of Internet Explorer is installed, click the article number below to view the article in the Microsoft Knowledge Base:<br />
<div class="indent"><br />
<br />
[[../164539|164539]] How to Determine Which Version of Internet Explorer is Installed<br />
<br />
<br />
</div><br />
=== Internet Explorer 5.01 Service Pack 1 and Internet Explorer 5.5 ===<br />
<br />
This issue is also resolved in Microsoft Internet Explorer 5.01 Service Pack 1 (SP1) and Microsoft Internet Explorer 5.5. If you want to install either of these versions, use one of the following methods:<br />
<ul><br />
<li>Install Internet Explorer 5.01 Service Pack 1 (SP1) from one of the following locations:<br />
<div class="indent"><br />
<br />
<p>http://www.microsoft.com/windows/ie/download/ie501sp1.htm</p><br />
<br />
</div><br />
<div class="indent"><br />
<br />
<p>-or-</p><br />
<br />
</div><br />
<div class="indent"><br />
<br />
<p>http://www.windowsupdate.com</p><br />
<br />
</div></li><br />
<li>Install Internet Explorer 5.5 on any computer except on a Microsoft Windows 2000-based computer from one of the following locations:<br />
<div class="indent"><br />
<br />
<p>http://www.microsoft.com/windows/ie</p><br />
<br />
</div><br />
<div class="indent"><br />
<br />
<p>-or-</p><br />
<br />
</div><br />
<div class="indent"><br />
<br />
<p>http://www.windowsupdate.com</p><br />
<br />
</div><br />
'''NOTE''': When you install the update on a Windows 2000-based computer, Internet Explorer 5.5 does not install upgraded Outlook Express components, and therefore does not eliminate the vulnerability. Microsoft recommends that Windows 2000 users install Internet Explorer 5.01 SP1 from one of the links in this section.<br /><br />
<br /><br />
Windows 2000 users who have already installed Internet Explorer 5.5 and who are concerned about this issue can uninstall Internet Explorer 5.5 by using the '''Add/Remove Programs''' tool in Control Panel, and then installing Internet Explorer 5.01 SP1.</li></ul><br />
<br />
<br />
</div><br />
<div class="status_section"><br />
<br />
== STATUS ==<br />
<br />
Microsoft has confirmed this to be a problem in Outlook Express 4.x and 5.0x. The problem is resolved in Outlook Express 5.5.<br />
<br />
</div><br />
Keywords: kbgraphxlinkcritical kbenv kbprb KB247638<br />
<br />
<div class="footer"><br />
<br />
<br /><br />
<br />
<br />
-----<br />
<br />
[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]<br />
<br />
<span>© Microsoft Corporation. All rights reserved.</span><br />
<br />
<br />
</div><br />
<br />
</div></div>
3155ffGd