Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2001-0538
Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and previous versions allows remote malicious users to execute arbitrary commands via a malicious HTML e-mail message or web page.
Microsoft Outlook
2 EDB exploits
5
CVSSv2
CVE-2004-0502
Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the original message, which allows remote malicious users to bypass zone restrictions and exploit other issues that rely on predictable locati...
Microsoft Outlook 2003
1 EDB exploit
5
CVSSv2
CVE-2022-23280
Microsoft Outlook for Mac Security Feature Bypass Vulnerability
Microsoft Outlook 2016
4.3
CVSSv2
CVE-2017-0207
Microsoft Outlook for Mac 2011 allows remote malicious users to spoof web content via a crafted email with specific HTML tags, aka "Microsoft Browser Spoofing Vulnerability."
Microsoft Outlook 2011
5
CVSSv2
CVE-2006-2055
Argument injection vulnerability in Microsoft Outlook 2003 SP1 allows user-assisted remote malicious users to modify command line arguments to an invoked mail client via " (double quote) characters in a mailto: scheme handler, as demonstrated by launching Microsoft Outlook w...
Microsoft Outlook 2003
5.1
CVSSv2
CVE-2002-0481
An interaction between Windows Media Player (WMP) and Outlook 2002 allows remote malicious users to bypass Outlook security settings and execute Javascript via an IFRAME in an HTML email message that references .WMS (Windows Media Skin) or other WMP media files, whose onload hand...
Microsoft Outlook 2002
4.3
CVSSv2
CVE-2017-8545
A spoofing vulnerability exists in when Microsoft Outlook for Mac does not sanitize html properly, aka "Microsoft Outlook for Mac Spoofing Vulnerability".
Microsoft Outlook 2016
5
CVSSv2
CVE-2017-11776
Microsoft Outlook 2016 allows an malicious user to obtain the email content of a user, due to how Outlook 2016 discloses user email content, aka "Microsoft Outlook Information Disclosure Vulnerability."
Microsoft Outlook 2016
1 Article
7.5
CVSSv2
CVE-2002-2101
Microsoft Outlook 2002 allows remote malicious users to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or "javascript:" URI in the href attribute of an "a" tag.
Microsoft Outlook 2002
5
CVSSv2
CVE-2004-0501
Outlook 2003 allows remote malicious users to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow rem...
Microsoft Outlook 2003
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »