Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-1179
Buffer overflow in the S/MIME Parsing capability in Microsoft Outlook Express 5.5 and 6.0 allows remote malicious users to execute arbitrary code via a digitally signed email with a long "From" address, which triggers the overflow when the user views or previews the mes...
Microsoft Outlook Express 6.0
Microsoft Outlook Express 5.5
1 EDB exploit
5
CVSSv2
CVE-2005-1052
Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote malicious users to spoof e-mail addresses.
Microsoft Outlook 2003
Microsoft Outlook Web Access 2003
6.8
CVSSv2
CVE-2006-2386
Unspecified vulnerability in Microsoft Outlook Express 6 and previous versions allows remote malicious users to execute arbitrary code via a crafted contact record in a Windows Address Book (WAB) file.
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
7.5
CVSSv2
CVE-2002-0285
Outlook Express 5.5 and 6.0 on Windows treats a carriage return ("CR") in a message header as if it were a valid carriage return/line feed combination (CR/LF), which could allow remote malicious users to bypass virus protection and or other filtering mechanisms via a ma...
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
6.8
CVSSv2
CVE-2021-31949
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook 2016
Microsoft Outlook 2013
Microsoft Office 2019
Microsoft 365 Apps -
7.5
CVSSv2
CVE-2002-1056
Microsoft Outlook 2000 and 2002, when configured to use Microsoft Word as the email editor, does not block scripts that are used while editing email messages in HTML or Rich Text Format (RTF), which could allow remote malicious users to execute arbitrary scripts via an email that...
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Word 2000
Microsoft Word 2002
5
CVSSv2
CVE-2001-0322
MSHTML.DLL HTML parser in Internet Explorer 4.0, and other versions, allows remote malicious users to cause a denial of service (application crash) via a script that creates and deletes an object that is associated with the browser window object.
Microsoft Outlook Express 5.5
Microsoft Internet Explorer 4.0
Microsoft Outlook 2000
1 EDB exploit
7.1
CVSSv2
CVE-2008-1448
The MHTML protocol handler in a component of Microsoft Outlook Express 5.5 SP2 and 6 through SP1, and Windows Mail, does not assign the correct Internet Explorer Security Zone to UNC share pathnames, which allows remote malicious users to bypass intended access restrictions and r...
Microsoft Outlook Express 5.5
Microsoft Windows Mail
Microsoft Outlook Express 6.0
5
CVSSv2
CVE-2004-0284
Microsoft Internet Explorer 6.0, Outlook 2002, and Outlook 2003 allow remote malicious users to cause a denial of service (CPU consumption), if "Do not save encrypted pages to disk" is disabled, via a web site or HTML e-mail that contains two null characters (%00) after...
Microsoft Outlook 2002
Microsoft Outlook 2003
Microsoft Internet Explorer 6.0
Microsoft Ie 6.0
NA
CVE-2023-23397
Microsoft Outlook Elevation of Privilege Vulnerability
Microsoft Outlook 2016
Microsoft Outlook 2013
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2021
38 Github repositories
8 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »