Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2002-2100
Microsoft Outlook 2002 allows remote malicious users to embed bypass the file download restrictions for attachments via an HTML email message that uses an IFRAME to reference malicious content.
Microsoft Outlook 2002
Microsoft Outlook 2000
445
VMScore
CVE-2004-2482
Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does not properly handle an opening OBJECT tag that does not have a closing OBJECT tag, which causes Outlook to automatically download the URI in t...
Microsoft Outlook 2000
Microsoft Outlook 2003
445
VMScore
CVE-2000-0756
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows malicious users to cause a denial of service.
Microsoft Outlook 2000
Microsoft Outlook 98
828
VMScore
CVE-2018-0851
Microsoft Office 2007 SP2, Microsoft Office Word Viewer, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow a remote code execution vulnerability, due to how Office handles objects in memory, ...
Microsoft Outlook 2013
Microsoft Outlook 2016
Microsoft Outlook 2010
Microsoft Office 2007
Microsoft Office 2016
Microsoft Office Word Viewer -
1 Article
885
VMScore
CVE-2003-1378
Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote malicious users to execute arbitrary programs via an HTML email with the CODEBASE parameter set to the program, a vulnerability similar to CAN-2002-0077.
Microsoft Outlook 2000
Microsoft Outlook Express 6.0
1 EDB exploit
NA
CVE-2023-33131
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook 2013
Microsoft Outlook Rt 2013
Microsoft Office 2019
Microsoft Office Long Term Servicing Channel 2021
Microsoft Outlook 2016
828
VMScore
CVE-2007-3897
Heap-based buffer overflow in Microsoft Outlook Express 6 and previous versions, and Windows Mail for Vista, allows remote Network News Transfer Protocol (NNTP) servers to execute arbitrary code via long NNTP responses that trigger memory corruption.
Microsoft Outlook Express 6.0
Microsoft Outlook Express
Microsoft Windows Mail -
445
VMScore
CVE-2005-1052
Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote malicious users to spoof e-mail addresses.
Microsoft Outlook 2003
Microsoft Outlook Web Access 2003
760
VMScore
CVE-2005-1213
Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
2 EDB exploits
454
VMScore
CVE-2006-0014
Buffer overflow in Microsoft Outlook Express 5.5 and 6 allows remote malicious users to execute arbitrary code via a crafted Windows Address Book (WAB) file containing "certain Unicode strings" and modified length values.
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »