Microsoft Outlook (http://office.microsoft.com/outlook/) provides "an integrated solution for managing and organizing e-mail messages, schedules, tasks, notes, contacts, and other information". Remote exploitation of an input validation error in the handling of "mailto" URIs by Microsoft Corp.'s Outlook may allow arbitrary code execution.

http://www.securiteam.com/windowsntfocus/5IP0B0KNPM.html