Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-1179
Buffer overflow in the S/MIME Parsing capability in Microsoft Outlook Express 5.5 and 6.0 allows remote malicious users to execute arbitrary code via a digitally signed email with a long "From" address, which triggers the overflow when the user views or previews the mes...
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
1 EDB exploit
5
CVSSv2
CVE-2005-1052
Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote malicious users to spoof e-mail addresses.
Microsoft Outlook 2003
Microsoft Outlook Web Access 2003
7.5
CVSSv2
CVE-2005-1213
Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
2 EDB exploits
9.3
CVSSv2
CVE-2007-3897
Heap-based buffer overflow in Microsoft Outlook Express 6 and previous versions, and Windows Mail for Vista, allows remote Network News Transfer Protocol (NNTP) servers to execute arbitrary code via long NNTP responses that trigger memory corruption.
Microsoft Outlook Express 6.0
Microsoft Outlook Express
Microsoft Windows Mail -
6.8
CVSSv2
CVE-2021-31949
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook 2016
Microsoft Outlook 2013
Microsoft Office 2019
Microsoft 365 Apps -
7.5
CVSSv2
CVE-2002-1056
Microsoft Outlook 2000 and 2002, when configured to use Microsoft Word as the email editor, does not block scripts that are used while editing email messages in HTML or Rich Text Format (RTF), which could allow remote malicious users to execute arbitrary scripts via an email that...
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Word 2000
Microsoft Word 2002
7.1
CVSSv2
CVE-2008-1448
The MHTML protocol handler in a component of Microsoft Outlook Express 5.5 SP2 and 6 through SP1, and Windows Mail, does not assign the correct Internet Explorer Security Zone to UNC share pathnames, which allows remote malicious users to bypass intended access restrictions and r...
Microsoft Outlook Express 5.5
Microsoft Windows Mail
Microsoft Outlook Express 6.0
5
CVSSv2
CVE-2001-0322
MSHTML.DLL HTML parser in Internet Explorer 4.0, and other versions, allows remote malicious users to cause a denial of service (application crash) via a script that creates and deletes an object that is associated with the browser window object.
Microsoft Outlook Express 5.5
Microsoft Internet Explorer 4.0
Microsoft Outlook 2000
1 EDB exploit
5
CVSSv2
CVE-2004-0284
Microsoft Internet Explorer 6.0, Outlook 2002, and Outlook 2003 allow remote malicious users to cause a denial of service (CPU consumption), if "Do not save encrypted pages to disk" is disabled, via a web site or HTML e-mail that contains two null characters (%00) after...
Microsoft Outlook 2002
Microsoft Outlook 2003
Microsoft Internet Explorer 6.0
Microsoft Ie 6.0
NA
CVE-2023-23397
Microsoft Outlook Elevation of Privilege Vulnerability
Microsoft Outlook 2016
Microsoft Outlook 2013
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2021
37 Github repositories
8 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »