Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter parameters of mailto: URLs when using them as arguments when calling OUTLOOK.EXE, which allows remote malicious users to use script code in the Local Machine zone and execute arbitrary programs.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft outlook 2002 |
||
microsoft office xp |