Unrated severityNVD Advisory· Published Jan 10, 2006· Updated Apr 16, 2026

CVE-2006-0002

Description

Unspecified vulnerability in Microsoft Outlook 2000 through 2003, Exchange 5.0 Server SP2 and 5.5 SP4, Exchange 2000 SP3, and Office allows remote attackers to execute arbitrary code via an e-mail message with a crafted Transport Neutral Encapsulation Format (TNEF) MIME attachment, related to message length validation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A TNEF MIME attachment parsing vulnerability in Outlook and Exchange allows remote attackers to execute arbitrary code without authentication.

Vulnerability

A buffer overflow vulnerability exists in the decoding of Transport Neutral Encapsulation Format (TNEF) MIME attachments in Microsoft Outlook 2000, 2002, and 2003, as well as Microsoft Exchange Server 5.0 SP2, 5.5 SP4, and 2000 SP3 [1][2]. The vulnerability is related to insufficient message length validation during TNEF processing [1][4]. Affected versions include Outlook 2000 with Office 2000 SP3, Outlook 2002 with Office XP SP3, Outlook 2003 with Office 2003 SP1 or SP2, and the specified Exchange Server versions [1].

Exploitation

An attacker can send a specially crafted email message containing a malicious TNEF MIME attachment to a vulnerable system [1][4]. No authentication is required, and the attacker only needs the ability to deliver the email to the target. On client workstations running Outlook, the vulnerability is triggered when the user opens or previews the malicious message [4]. On Exchange servers, the vulnerability can be triggered without any user interaction when the server processes the email message [4].

Impact

Successful exploitation allows a remote, unauthenticated attacker to execute arbitrary code with the privileges of the current user on Outlook, or with system-level privileges on Exchange Server [1][4]. This can lead to full compromise of the affected system, including installation of programs, viewing or modifying data, and creating new accounts [1].

Mitigation

Microsoft released security updates for all affected software on January 10, 2006, as part of bulletin MS06-003 [1]. The updates are: KB892842 for Outlook 2000, KB892841 for Outlook 2002, KB892843 for Outlook 2003, and KB894689 for Exchange Server 5.0 SP2, 5.5 SP4, and 2000 SP3 [1]. Non-affected versions include Exchange Server 2003 SP1 and SP2 [1]. Workarounds are listed in the Microsoft bulletin, such as blocking TNEF attachments at the email gateway [4].

References

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Microsoft/Exchange Server9 versions
cpe:2.3:a:microsoft:exchange_server:2000:sp3:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:microsoft:exchange_server:2000:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:5.0:-:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:5.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:5.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:5.5:-:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:5.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:5.5:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:5.5:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:5.5:sp4:*:*:*:*:*:*
Microsoft/Office4 versions
cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2003:sp1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
Microsoft/Outlook4 versions
cpe:2.3:a:microsoft:outlook:2000:sp3:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:microsoft:outlook:2000:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:outlook:2002:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:outlook:2003:*:*:*:*:*:*:*
- (no CPE)range: 2000 through 2003
Oracle Corporation/Exchangellm-fuzzy
Range: 5.0 Server SP2, 5.5 SP4, 2000 SP3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/18368nvdPatchThird Party Advisory
securitytracker.com/idnvdPatchThird Party AdvisoryVDB Entry
securitytracker.com/idnvdPatchThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/16197nvdPatchThird Party AdvisoryVDB Entry
www.us-cert.gov/cas/techalerts/TA06-010A.htmlnvdPatchThird Party AdvisoryUS Government Resource
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-003nvdPatchVendor Advisory
securityreason.com/securityalert/330nvdThird Party Advisory
securityreason.com/securityalert/331nvdThird Party Advisory
support.avaya.com/elmodocs2/security/ASA-2006-004.htmnvdThird Party Advisory
www.kb.cert.org/vuls/id/252146nvdThird Party AdvisoryUS Government Resource
www.securityfocus.com/archive/1/421518/100/0/threadednvdThird Party AdvisoryVDB Entry
www.securityfocus.com/archive/1/421520/100/0/threadednvdThird Party AdvisoryVDB Entry
exchange.xforce.ibmcloud.com/vulnerabilities/22878nvdThird Party AdvisoryVDB Entry
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1082nvdThird Party Advisory
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1165nvdThird Party Advisory
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1316nvdThird Party Advisory
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1456nvdThird Party Advisory
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1485nvdThird Party Advisory
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A624nvdThird Party Advisory
www.vupen.com/english/advisories/2006/0119nvdPermissions Required

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.026
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000