Lucene search

MitreCVE-2001-0538

HistoryMar 09, 2002 - 5:00 a.m.

CVE-2001-0538

2002-03-0905:00:00

mitre

web.nvd.nist.gov

microsoft

outlook 2002

activex control

remote attack

cve-2001-0538

html email

web page

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

High

EPSS

0.054

Percentile

93.2%

JSON

Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a malicious HTML e-mail message or web page.

Affected configurations

Nvd

Node

microsoftoutlookRange≤2002

VendorProductVersionCPE
microsoftoutlook*cpe:2.3:a:microsoft:outlook:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	outlook	*	cpe:2.3:a:microsoft:outlook::::::::

References

marc.info/?l=bugtraq&m=99496431214078&w=2

www.ciac.org/ciac/bulletins/l-113.shtml

www.kb.cert.org/vuls/id/131569

www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0107&L=ntbugtraq&F=P&S=&P=862

www.securityfocus.com/bid/3025

docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-038

exchange.xforce.ibmcloud.com/vulnerabilities/6831

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

High

EPSS

0.054

Percentile

93.2%

JSON

Related for CVE-2001-0538