[22094] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Outlook 2000 Rich Text information disclosure

daemon@ATHENA.MIT.EDU (Dmitriy Kropivnitskiy)
Thu Aug 2 15:45:33 2001

Date: Thu, 2 Aug 2001 13:22:16 -0400
From: Dmitriy Kropivnitskiy <dkropivnitskiy@tigertesting.com>
To: BugTraq List <bugtraq@securityfocus.com>
Message-ID: <20010802132216.A20170@zaphod>
Reply-To: Dmitriy Kropivnitskiy <dkropivnitskiy@tigertesting.com>
Mail-Followup-To: Dmitriy Kropivnitskiy <dkropivnitskiy@tigertesting.com>,
	BugTraq List <bugtraq@securityfocus.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

I am not sure if this was posted earlier, but Outlook 2000
Rich Text messages seem to contain full path to user's 
mail box. Admittedly this is not much, but since by default
Outlook creates it's mailbox in the profile directory, I might get
the username and possibly OS version 
(C:\WINNT\Profiles\johns\<blahblah>\mailbox.pst for example )


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[22094] in bugtraq

Outlook 2000 Rich Text information disclosure

daemon@ATHENA.MIT.EDU (Dmitriy Kropivnitskiy)Thu Aug 2 15:45:33 2001

daemon@ATHENA.MIT.EDU (Dmitriy Kropivnitskiy)
Thu Aug 2 15:45:33 2001