Microsoft Outlook Express 6.0 allows remote attackers to bypass intended access restrictions, load content from arbitrary sources into the Outlook context, and facilitate phishing attacks via a "BASE HREF" with the target set to "_top".Referenceshttp://marc.info/?l=bugtraq&m=108448627120764&w=2http://secunia.com/advisories/11607http://www.osvdb.org/6121
