Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook express vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0816
Integer overflow in inetcomm.dll in Microsoft Outlook Express 5.5 SP2, 6, and 6 SP1; Windows Live Mail on Windows XP SP2 and SP3, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7; and Windows Mail on Windows Vista SP1 and SP2, Windows Server 2008 Go...
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
Microsoft Windows Live Mail
Microsoft Windows Mail
1 EDB exploit
NA
CVE-2008-4844
Use-after-free vulnerability in the CRecordInstance::TransferToDestination function in mshtml.dll in Microsoft Internet Explorer 5.01, 6, 6 SP1, and 7 allows remote malicious users to execute arbitrary code via DSO bindings involving (1) an XML Island, (2) XML DSOs, or (3) Tabula...
Microsoft Internet Explorer 6
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 7
3 EDB exploits
1 Github repository
NA
CVE-2008-5424
The MimeOleClearDirtyTree function in InetComm.dll in Microsoft Outlook Express 6.00.2900.5512 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which all...
Microsoft Outlook Express 6.00.2900.5512
NA
CVE-2008-1448
The MHTML protocol handler in a component of Microsoft Outlook Express 5.5 SP2 and 6 through SP1, and Windows Mail, does not assign the correct Internet Explorer Security Zone to UNC share pathnames, which allows remote malicious users to bypass intended access restrictions and r...
Microsoft Outlook Express 5.5
Microsoft Windows Mail
Microsoft Outlook Express 6.0
NA
CVE-2007-3897
Heap-based buffer overflow in Microsoft Outlook Express 6 and previous versions, and Windows Mail for Vista, allows remote Network News Transfer Protocol (NNTP) servers to execute arbitrary code via long NNTP responses that trigger memory corruption.
Microsoft Outlook Express 6.0
Microsoft Outlook Express
Microsoft Windows Mail -
NA
CVE-2007-4040
Argument injection vulnerability involving Microsoft Outlook and Outlook Express, when certain URIs are registered, allows remote malicious users to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in an unspecified URI, which are in...
Microsoft Outlook Express
Microsoft Outlook
NA
CVE-2007-2227
The MHTML protocol handler in Microsoft Outlook Express 6 and Windows Mail in Windows Vista does not properly handle Content-Disposition "notifications," which allows remote malicious users to obtain sensitive information from other Internet Explorer domains, aka "...
Microsoft Outlook Express 6.0
Microsoft Windows Mail
NA
CVE-2007-2225
A component in Microsoft Outlook Express 6 and Windows Mail in Windows Vista does not properly handle certain HTTP headers when processing MHTML protocol URLs, which allows remote malicious users to obtain sensitive information from other Internet Explorer domains, aka "URL ...
Microsoft Outlook Express 6.0
Microsoft Windows Mail
NA
CVE-2006-1305
Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote malicious users to cause a denial of service (memory exhaustion and interrupted mail recovery) via malformed e-mail header information, possibly related to (1) long subject lines or (2) large numbers of recipients...
Microsoft Office 2000
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Office Xp
Microsoft Office 2003
Microsoft Outlook 2003
NA
CVE-2006-2386
Unspecified vulnerability in Microsoft Outlook Express 6 and previous versions allows remote malicious users to execute arbitrary code via a crafted contact record in a Windows Address Book (WAB) file.
Microsoft Outlook Express 5.5
Microsoft Outlook Express 6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »