CVE-2004-2694

2007-10-0620:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.7%

JSON

Microsoft Outlook Express 6.0 allows remote attackers to bypass intended access restrictions, load content from arbitrary sources into the Outlook context, and facilitate phishing attacks via a “BASE HREF” with the target set to “_top”.

References

marc.info/?l=bugtraq&m=108448627120764&w=2

secunia.com/advisories/11607

www.osvdb.org/6121