Home / bulletins MS10-030 - Critical: Vulnerability in Outlook Express and Windows Mail Could Allow Remote Code Execution (978542) - Version:1.2
Posted on 20 May 2010
CriticalSeverity Rating: Critical - Revision Note: V1.2 (May 19, 2010): Removed erroneous references to Windows Mail when installed on Windows 7 and Windows Server 2008 R2. Also corrected the bulletin replacement information for Windows XP, Windows Server 2003, and Windows Vista update packages.Summary: This security update resolves a privately reported vulnerability in Outlook Express, Windows Mail, and Windows Live Mail. The vulnerability could allow remote code execution if a user visits a malicious e-mail server. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Other versions
- MS10-030 - Version: 1.1
- MS10-030 - Version: 1.2
