A malicious user can send modified e-mails in Outlook Express (6.0, 5.5, 5.01) with file attachments using specially crafted MIME headers that may misrepresent the name and size of the attachment, set the attachment icon to the default icon, and bypass hostile file type filters.

There was no solution available from Microsoft at this time.

Reported by: Matthew Murphy