Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
outlook express vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0145
Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an malicious user to execute arbitrary commands via a malformed vCard birthday field.
Microsoft Outlook Express 5.0
Microsoft Outlook 2000
Microsoft Outlook 98
NA
CVE-2003-1378
Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote malicious users to execute arbitrary programs via an HTML email with the CODEBASE parameter set to the program, a vulnerability similar to CAN-2002-0077.
Microsoft Outlook 2000
Microsoft Outlook Express 6.0
1 EDB exploit
NA
CVE-2001-1325
Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote malicious users to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows ...
Microsoft Outlook Express 5.0
Microsoft Outlook Express 5.5
Microsoft Internet Explorer 5.0
Microsoft Internet Explorer 5.5
1 EDB exploit
NA
CVE-2001-1547
Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, does not block email attachments from forwarded messages, which could allow remote malicious users to execute arbitrary code.
Microsoft Outlook Express 6.0
NA
CVE-2002-2202
Outlook Express 6.0 does not delete messages from dbx files, even when a user empties the Deleted items folder, which allows local users to read other users email.
Microsoft Outlook Express 6.0
NA
CVE-2006-2111
A component in Microsoft Outlook Express 6 allows remote malicious users to bypass domain restrictions and obtain sensitive information via redirections with the mhtml: URI handler, as originally reported for Internet Explorer 6 and 7, aka "URL Redirect Cross Domain Informat...
Microsoft Outlook Express 6.0
1 EDB exploit
NA
CVE-2008-5424
The MimeOleClearDirtyTree function in InetComm.dll in Microsoft Outlook Express 6.00.2900.5512 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which all...
Microsoft Outlook Express 6.00.2900.5512
NA
CVE-2000-0105
Outlook Express 5.01 and Internet Explorer 5.01 allow remote malicious users to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client.
Microsoft Outlook Express 5.0
1 EDB exploit
NA
CVE-2005-2226
Microsoft Outlook Express 6.0 leaks the default news server account when a user responds to a "watched" conversation thread, which could allow remote malicious users to obtain sensitive information.
Microsoft Outlook Express 6.0
NA
CVE-2004-2694
Microsoft Outlook Express 6.0 allows remote malicious users to bypass intended access restrictions, load content from arbitrary sources into the Outlook context, and facilitate phishing attacks via a "BASE HREF" with the target set to "_top".
Microsoft Outlook Express 6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »