Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv2
CVE-2003-1378
Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote malicious users to execute arbitrary programs via an HTML email with the CODEBASE parameter set to the program, a vulnerability similar to CAN-2002-0077.
Microsoft Outlook 2000
Microsoft Outlook Express 6.0
1 EDB exploit
7.6
CVSSv2
CVE-2000-0160
The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote malicious user to install software components without prompting the user by stating that the software's manufacturer is Microsoft.
Microsoft Internet Explorer 5
Microsoft Ie 4.x
Microsoft Outlook
7.5
CVSSv2
CVE-2008-3068
Microsoft Crypto API 5.131.2600.2180 up to and including 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation List (CRL) checks by using an arbitrary URL from a certificate embedded in a (1) S/MIME e-mail message or (2) signed document, whi...
Microsoft Groove 2007
Microsoft Infopath 2003
Microsoft Outlook 2007
Microsoft Powerpoint 2003
Microsoft Visio Professional 2007
Microsoft Visio Standard 2007
Microsoft Access 2007
Microsoft Office 2007
Microsoft Office Communicator 2007
Microsoft Project Standard 2007
Microsoft Publisher 2003
Microsoft Excel 2003
Microsoft Excel 2007
Microsoft Frontpage 2003
Microsoft Onenote 2003
Microsoft Outlook 2003
Microsoft Publisher 2007
Microsoft Sharepoint Designer 2007
Microsoft Infopath 2007
Microsoft Powerpoint 2007
Microsoft Project Professional 2007
Microsoft Windows Live Mail 2008
7.5
CVSSv2
CVE-2006-4193
Microsoft Internet Explorer 6.0 SP1 and possibly other versions allows remote malicious users to cause a denial of service and possibly execute arbitrary code by instantiating COM objects as ActiveX controls, including (1) imskdic.dll (Microsoft IME), (2) chtskdic.dll (Microsoft ...
Microsoft Ie 6.0
Microsoft Internet Explorer 6.0
2 EDB exploits
7.5
CVSSv2
CVE-2006-0002
Unspecified vulnerability in Microsoft Outlook 2000 through 2003, Exchange 5.0 Server SP2 and 5.5 SP4, Exchange 2000 SP3, and Office allows remote malicious users to execute arbitrary code via an e-mail message with a crafted Transport Neutral Encapsulation Format (TNEF) MIME att...
Microsoft Exchange Server 5.0
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
Microsoft Office 2000
Microsoft Office 2003
Microsoft Office Xp
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Outlook 2003
7.5
CVSSv2
CVE-2005-1213
Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
2 EDB exploits
7.5
CVSSv2
CVE-2004-0204
Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business Contact Manager, Microsoft Business Solutions CRM 1.2, and other products, allows ...
Bea Weblogic Server 8.1
Businessobjects Crystal Reports 10
Businessobjects Crystal Reports 9
Businessobjects Crystal Enterprise Java Sdk 8.5
Businessobjects Crystal Enterprise Ras 8.5
Borland Software J Builder
Microsoft Business Solutions Crm 1.2
Microsoft Outlook 2003
Businessobjects Crystal Enterprise 10
Businessobjects Crystal Enterprise 9
Microsoft Visual Studio .net 2003
1 EDB exploit
7.5
CVSSv2
CVE-2004-0121
Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter parameters of mailto: URLs when using them as arguments when calling OUTLOOK.EXE, which allows remote malicious users to use script code in the Local Machine zone and execute arbitrary program...
Microsoft Outlook 2002
Microsoft Office Xp
1 EDB exploit
7.5
CVSSv2
CVE-2003-0814
Internet Explorer 6 SP1 and previous versions allows remote malicious users to bypass zone restrictions and execute Javascript by setting the window's "href" to the malicious Javascript, then calling execCommand("Refresh") to refresh the page, aka BodyRef...
Microsoft Internet Explorer 6.0
Microsoft Ie 6.0
Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 5.5
7.5
CVSSv2
CVE-2003-0816
Internet Explorer 6 SP1 and previous versions allows remote malicious users to bypass zone restrictions by (1) using the NavigateAndFind method to load a file: URL containing Javascript, as demonstrated by NAFfileJPU, (2) using the window.open method to load a file: URL containin...
Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
Microsoft Ie 6.0
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »