Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
express vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2000-0621
Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote malicious users to read files on the client's system via a malformed HTML message that stores files outside of the cache, aka the "Cache Bypass" vulnerability.
Microsoft Outlook Express 4.01
Microsoft Outlook Express 5.0
Microsoft Outlook Express 5.0.1
Microsoft Outlook 2000
Microsoft Outlook 97
Microsoft Outlook 98
Microsoft Outlook Express 4.0
NA
CVE-2002-1179
Buffer overflow in the S/MIME Parsing capability in Microsoft Outlook Express 5.5 and 6.0 allows remote malicious users to execute arbitrary code via a digitally signed email with a long "From" address, which triggers the overflow when the user views or previews the mes...
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
1 EDB exploit
NA
CVE-2006-2386
Unspecified vulnerability in Microsoft Outlook Express 6 and previous versions allows remote malicious users to execute arbitrary code via a crafted contact record in a Windows Address Book (WAB) file.
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
NA
CVE-2004-0380
The MHTML protocol handler in Microsoft Outlook Express 5.5 SP2 through Outlook Express 6 SP1 allows remote malicious users to bypass domain restrictions and execute arbitrary code, as demonstrated on Internet Explorer using script in a compiled help (CHM) file that references th...
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
3 EDB exploits
6.5
CVSSv3
CVE-2022-27560
HCL VersionVault Express exposes administrator credentials.
Hcltech Versionvault Express 2.0.1
Hcltech Versionvault Express 2.1.0
7.5
CVSSv3
CVE-2022-27563
An unauthenticated user can overload a part of HCL VersionVault Express and cause a denial of service.
Hcltech Versionvault Express 2.0.1
Hcltech Versionvault Express 2.1.0
NA
CVE-2006-0014
Buffer overflow in Microsoft Outlook Express 5.5 and 6 allows remote malicious users to execute arbitrary code via a crafted Windows Address Book (WAB) file containing "certain Unicode strings" and modified length values.
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
9.8
CVSSv3
CVE-2020-7699
This affects the package express-fileupload prior to 1.1.8. If the parseNested option is enabled, sending a corrupt HTTP request can lead to denial of service or arbitrary code execution.
Express-fileupload Project Express-fileupload
Netapp Max Data -
2 Github repositories
NA
CVE-2005-1213
Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
2 EDB exploits
NA
CVE-2002-0285
Outlook Express 5.5 and 6.0 on Windows treats a carriage return ("CR") in a message header as if it were a valid carriage return/line feed combination (CR/LF), which could allow remote malicious users to bypass virus protection and or other filtering mechanisms via a ma...
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »