Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook - vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2000-0756
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows malicious users to cause a denial of service.
Microsoft Outlook 2000
Microsoft Outlook 98
5
CVSSv2
CVE-2002-2100
Microsoft Outlook 2002 allows remote malicious users to embed bypass the file download restrictions for attachments via an HTML email message that uses an IFRAME to reference malicious content.
Microsoft Outlook 2002
Microsoft Outlook 2000
5
CVSSv2
CVE-2004-2482
Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does not properly handle an opening OBJECT tag that does not have a closing OBJECT tag, which causes Outlook to automatically download the URI in t...
Microsoft Outlook 2000
Microsoft Outlook 2003
9.3
CVSSv2
CVE-2018-0851
Microsoft Office 2007 SP2, Microsoft Office Word Viewer, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow a remote code execution vulnerability, due to how Office handles objects in memory, ...
Microsoft Outlook 2013
Microsoft Outlook 2016
Microsoft Outlook 2010
Microsoft Office 2007
Microsoft Office 2016
Microsoft Office Word Viewer -
1 Article
8.8
CVSSv2
CVE-2003-1378
Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote malicious users to execute arbitrary programs via an HTML email with the CODEBASE parameter set to the program, a vulnerability similar to CAN-2002-0077.
Microsoft Outlook 2000
Microsoft Outlook Express 6.0
1 EDB exploit
NA
CVE-2023-33131
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook 2013
Microsoft Outlook Rt 2013
Microsoft Office 2019
Microsoft Office Long Term Servicing Channel 2021
Microsoft Outlook 2016
9.3
CVSSv2
CVE-2007-3897
Heap-based buffer overflow in Microsoft Outlook Express 6 and previous versions, and Windows Mail for Vista, allows remote Network News Transfer Protocol (NNTP) servers to execute arbitrary code via long NNTP responses that trigger memory corruption.
Microsoft Outlook Express 6.0
Microsoft Outlook Express
Microsoft Windows Mail -
5
CVSSv2
CVE-2005-1052
Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote malicious users to spoof e-mail addresses.
Microsoft Outlook 2003
Microsoft Outlook Web Access 2003
10
CVSSv2
CVE-2004-0380
The MHTML protocol handler in Microsoft Outlook Express 5.5 SP2 through Outlook Express 6 SP1 allows remote malicious users to bypass domain restrictions and execute arbitrary code, as demonstrated on Internet Explorer using script in a compiled help (CHM) file that references th...
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
3 EDB exploits
7.5
CVSSv2
CVE-2005-1213
Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »