Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
outlook vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2003-0301
The IMAP Client for Outlook Express 6.00.2800.1106 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.
Microsoft Outlook Express 6.00.2800.1106
4.3
CVSSv2
CVE-2006-2111
A component in Microsoft Outlook Express 6 allows remote malicious users to bypass domain restrictions and obtain sensitive information via redirections with the mhtml: URI handler, as originally reported for Internet Explorer 6 and 7, aka "URL Redirect Cross Domain Informat...
Microsoft Outlook Express 6.0
1 EDB exploit
7.5
CVSSv2
CVE-2001-1547
Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, does not block email attachments from forwarded messages, which could allow remote malicious users to execute arbitrary code.
Microsoft Outlook Express 6.0
4.3
CVSSv2
CVE-2008-5424
The MimeOleClearDirtyTree function in InetComm.dll in Microsoft Outlook Express 6.00.2900.5512 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which all...
Microsoft Outlook Express 6.00.2900.5512
4.6
CVSSv2
CVE-2005-0921
Microsoft Outlook 2002 Connector for IBM Lotus Domino 2.0 allows local users to save passwords and login credentials locally, even when password caching is disabled by a group policy.
Microsoft Outlook Connector 2002
5
CVSSv2
CVE-2005-2226
Microsoft Outlook Express 6.0 leaks the default news server account when a user responds to a "watched" conversation thread, which could allow remote malicious users to obtain sensitive information.
Microsoft Outlook Express 6.0
1.9
CVSSv2
CVE-2008-2143
Unspecified versions of Microsoft Outlook Web Access (OWA) use the Cache-Control: no-cache HTTP directive instead of no-store, which might cause web browsers that follow RFC-2616 to cache sensitive information.
Microsoft Outlook Web Access
5
CVSSv2
CVE-2000-0105
Outlook Express 5.01 and Internet Explorer 5.01 allow remote malicious users to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client.
Microsoft Outlook Express 5.0
1 EDB exploit
5.8
CVSSv2
CVE-2004-2694
Microsoft Outlook Express 6.0 allows remote malicious users to bypass intended access restrictions, load content from arbitrary sources into the Outlook context, and facilitate phishing attacks via a "BASE HREF" with the target set to "_top".
Microsoft Outlook Express 6.0
7.5
CVSSv2
CVE-2001-0999
Outlook Express 6.00 allows remote malicious users to execute arbitrary script by embedding SCRIPT tags in a message whose MIME content type is text/plain, contrary to the expected behavior that text/plain messages will not run script.
Microsoft Outlook Express 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »