Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-0022
Buffer overflow in the implementation of an HTML directive in mshtml.dll in Internet Explorer 5.5 and 6.0 allows remote malicious users to execute arbitrary code via a web page that specifies embedded ActiveX controls in a way that causes 2 Unicode strings to be concatenated.
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
7.5
CVSSv2
CVE-2001-1547
Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, does not block email attachments from forwarded messages, which could allow remote malicious users to execute arbitrary code.
Microsoft Outlook Express 6.0
7.5
CVSSv2
CVE-2001-0726
Outlook Web Access (OWA) in Microsoft Exchange 5.5 Server, when used with Internet Explorer, does not properly detect certain inline script, which can allow remote malicious users to perform arbitrary actions on a user's Exchange mailbox via an HTML e-mail message.
Microsoft Exchange Server 5.5
7.5
CVSSv2
CVE-2001-0999
Outlook Express 6.00 allows remote malicious users to execute arbitrary script by embedding SCRIPT tags in a message whose MIME content type is text/plain, contrary to the expected behavior that text/plain messages will not run script.
Microsoft Outlook Express 6.0
7.5
CVSSv2
CVE-2001-0340
An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and Internet Explorer allows malicious users to execute malicious script code against a user's mailbox via a message attachment that contains HTML code, which is executed automatica...
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
7.5
CVSSv2
CVE-2001-1088
Microsoft Outlook 8.5 and previous versions, and Outlook Express 5 and previous versions, with the "Automatically put people I reply to in my address book" option enabled, do not notify the user when the "Reply-To" address is different than the "From"...
Microsoft Outlook 2000
Microsoft Outlook Express 5.0
Microsoft Outlook Express 4.72.3612
Microsoft Outlook Express 4.5
Microsoft Outlook Express 4.72.3120.0
Microsoft Outlook Express 4.27.3110
Microsoft Outlook Express 4.72.2106
Microsoft Outlook Express 4.0
Microsoft Outlook 98
Microsoft Outlook Express 5.5
Microsoft Outlook 97
1 EDB exploit
7.5
CVSSv2
CVE-2001-0145
Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an malicious user to execute arbitrary commands via a malformed vCard birthday field.
Microsoft Outlook 2000
Microsoft Outlook Express 5.0
Microsoft Outlook 98
7.5
CVSSv2
CVE-2001-1325
Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote malicious users to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows ...
Microsoft Outlook Express 5.0
Microsoft Outlook Express 5.5
Microsoft Internet Explorer 5.0
Microsoft Internet Explorer 5.5
1 EDB exploit
7.5
CVSSv2
CVE-2000-0621
Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote malicious users to read files on the client's system via a malformed HTML message that stores files outside of the cache, aka the "Cache Bypass" vulnerability.
Microsoft Outlook Express 5.0.1
Microsoft Outlook 2000
Microsoft Outlook Express 4.01
Microsoft Outlook Express 5.0
Microsoft Outlook Express 4.0
Microsoft Outlook 98
Microsoft Outlook 97
7.5
CVSSv2
CVE-2000-0419
The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote malicious users to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability.
Microsoft Access 2000
Microsoft Outlook 2000
Microsoft Powerpoint 2000
Microsoft Photodraw 2000 1.0
Microsoft Excel 2000
Microsoft Word 2000
Microsoft Project 2000
Microsoft Office 2000
Microsoft Works 2000
Microsoft Frontpage 2000
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »