Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook express vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4840
The Outlook Express Address Book control, when using Internet Explorer 6, allows remote malicious users to cause a denial of service (NULL dereference and browser crash) by creating the OutlookExpress.AddressBook COM object, which is not intended for use within Internet Explorer.
Microsoft Outlook Express Book Control
NA
CVE-2007-2225
A component in Microsoft Outlook Express 6 and Windows Mail in Windows Vista does not properly handle certain HTTP headers when processing MHTML protocol URLs, which allows remote malicious users to obtain sensitive information from other Internet Explorer domains, aka "URL ...
Microsoft Outlook Express 6.0
Microsoft Windows Mail
NA
CVE-2002-0867
Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote malicious users to cause a denial of service (crash) in Internet Explorer via invalid handle data in a Java applet, aka "Handle Validation Flaw."
Microsoft Virtual Machine 3200
Microsoft Virtual Machine 3300
Microsoft Virtual Machine 3100
Microsoft Virtual Machine 3188
Microsoft Virtual Machine 2000
Microsoft Virtual Machine 3000
Microsoft Virtual Machine 3802
Microsoft Virtual Machine 3805
NA
CVE-2003-0346
Multiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote malicious users to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buf...
Microsoft Directx 5.2
Microsoft Directx 6.1
Microsoft Directx 9.0a
Microsoft Directx 7.0
Microsoft Directx 7.0a
Microsoft Directx 8.1
NA
CVE-2006-2766
Buffer overflow in INETCOMM.DLL, as used in Microsoft Internet Explorer 6.0 up to and including 6.0 SP2, Windows Explorer, Outlook Express 6, and possibly other programs, allows remote user-assisted malicious users to cause a denial of service (application crash) via a long mhtml...
Microsoft Ie 6.0
Microsoft Internet Explorer 7.0
Microsoft Internet Explorer 6.0
1 EDB exploit
NA
CVE-2002-0866
Java Database Connectivity (JDBC) classes in Microsoft Virtual Machine (VM) up to and including 5.0.3805 allow remote malicious users to load and execute DLLs (dynamic link libraries) via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL ...
Microsoft Virtual Machine 3300
Microsoft Virtual Machine 3802
Microsoft Virtual Machine 3100
Microsoft Virtual Machine 3188
Microsoft Virtual Machine 3200
Microsoft Virtual Machine 2000
Microsoft Virtual Machine 3000
Microsoft Virtual Machine 3805
1 EDB exploit
NA
CVE-2003-0469
Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long "...
Microsoft Windows 98se
Microsoft Windows Me
Microsoft Windows Nt 4.0
Microsoft Windows 2003 Server R2
Microsoft Windows 98
Microsoft Windows 2000
Microsoft Windows 2003 Server 64-bit
Microsoft Windows Xp
1 EDB exploit
NA
CVE-2003-0116
Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check the Cascading Style Sheet input parameter for Modal dialogs, which allows remote malicious users to read files on the local system via a web page containing script that creates a dialog and then accesses the ta...
Microsoft Internet Explorer 5.0.1
Microsoft Ie 6.0
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
NA
CVE-2002-0022
Buffer overflow in the implementation of an HTML directive in mshtml.dll in Internet Explorer 5.5 and 6.0 allows remote malicious users to execute arbitrary code via a web page that specifies embedded ActiveX controls in a way that causes 2 Unicode strings to be concatenated.
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
NA
CVE-2008-4844
Use-after-free vulnerability in the CRecordInstance::TransferToDestination function in mshtml.dll in Microsoft Internet Explorer 5.01, 6, 6 SP1, and 7 allows remote malicious users to execute arbitrary code via DSO bindings involving (1) an XML Island, (2) XML DSOs, or (3) Tabula...
Microsoft Internet Explorer 6
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 7
3 EDB exploits
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »