CVE-2002-0285

2002-05-0304:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.018 Low

EPSS

Percentile

88.4%

JSON

Outlook Express 5.5 and 6.0 on Windows treats a carriage return (“CR”) in a message header as if it were a valid carriage return/line feed combination (CR/LF), which could allow remote attackers to bypass virus protection and or other filtering mechanisms via a mail message with headers that only contain the CR, which causes Outlook to create separate headers.

References

marc.info/?l=bugtraq&m=101362077701164&w=2

www.iss.net/security_center/static/8198.php

www.securityfocus.com/bid/4092