Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2000-0756
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows malicious users to cause a denial of service.
Microsoft Outlook 2000
Microsoft Outlook 98
9.3
CVSSv2
CVE-2013-3870
Double free vulnerability in Microsoft Outlook 2007 SP3 and 2010 SP1 and SP2 allows remote malicious users to execute arbitrary code by including many nested S/MIME certificates in an e-mail message, aka "Message Certificate Vulnerability."
Microsoft Outlook 2007
Microsoft Outlook 2010
5
CVSSv2
CVE-2004-2482
Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does not properly handle an opening OBJECT tag that does not have a closing OBJECT tag, which causes Outlook to automatically download the URI in t...
Microsoft Outlook 2000
Microsoft Outlook 2003
9.3
CVSSv2
CVE-2018-0851
Microsoft Office 2007 SP2, Microsoft Office Word Viewer, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow a remote code execution vulnerability, due to how Office handles objects in memory, ...
Microsoft Outlook 2013
Microsoft Outlook 2016
Microsoft Outlook 2010
Microsoft Office 2007
Microsoft Office 2016
Microsoft Office Word Viewer -
1 Article
8.8
CVSSv2
CVE-2003-1378
Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote malicious users to execute arbitrary programs via an HTML email with the CODEBASE parameter set to the program, a vulnerability similar to CAN-2002-0077.
Microsoft Outlook 2000
Microsoft Outlook Express 6.0
1 EDB exploit
NA
CVE-2023-33131
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook 2013
Microsoft Outlook Rt 2013
Microsoft Office 2019
Microsoft Office Long Term Servicing Channel 2021
Microsoft Outlook 2016
6.8
CVSSv2
CVE-2006-2386
Unspecified vulnerability in Microsoft Outlook Express 6 and previous versions allows remote malicious users to execute arbitrary code via a crafted contact record in a Windows Address Book (WAB) file.
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
5
CVSSv2
CVE-2005-1052
Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote malicious users to spoof e-mail addresses.
Microsoft Outlook 2003
Microsoft Outlook Web Access 2003
7.5
CVSSv2
CVE-2005-1213
Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
2 EDB exploits
5.1
CVSSv2
CVE-2006-0014
Buffer overflow in Microsoft Outlook Express 5.5 and 6 allows remote malicious users to execute arbitrary code via a crafted Windows Address Book (WAB) file containing "certain Unicode strings" and modified length values.
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »