Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
Vulnerability in Outlook 2002 could allow arbitrary command-line parameters in the Outlook.exe file
Article ID: 838440 - View products that this article applies to.
A vulnerability exists in Microsoft Outlook 2002 where duplicate command-line parameters may be passed in the Outlook.exe file. An attacker could possibly override the command-line parameters that are passed in the Outlook.exe file and pass arbitrary command-line parameters in a specially-crafted e-mail message to run malicious code on your computer.
To resolve this problem, use one of the following methods, depending on your situation:
To work around this problem, configure Outlook 2002 to use a different home page than the Outlook Today home page. The Outlook Today home page is the default view that Microsoft Outlook uses if Outlook is not configured to use an e-mail account. To configure Outlook 2002 to use a different home page than the Outlook Today home page:
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section of this article.