Microsoft Internet Explorer 5 Shell: IFrame Cross-Zone Scripting Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Computer Zone. This issue is related to ho...

Microsoft Outlook 2003Mail Client E-mail Address Verification Weakness

No description provided by source. source: http://www.securityfocus.com/bid/10323/info It has been reported that Microsoft Outlook mail client may be prone to a weakness that could allow a remote attacker to verify the validity of a recipient's e-mail address. This issue may result in a victim...

Microsoft Outlook 2003 Security Policy Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11446/info Microsoft Outlook 2003 is reported prone to a security policy bypass vulnerability. It is reported that by including a base64 encoded image in an email and labeling that image in a sufficient manner, it is then...

Microsoft Internet Explorer 5 Shell: IFrame Cross-Zone Scripting Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Computer Zone. This issue is related to ho...

Microsoft Outlook 2003 Predictable File Location Weakness

No description provided by source. source: http://www.securityfocus.com/bid/10307/info Microsoft Outlook 2003 is reported to be prone to store files that are specified in img tags, in predictable locations. This may present a security risk because many known and potential Internet Explorer...

[OutlookAttachView] View/Extract/Save Outlook Attachments

OutlookAttachView scans all messages stored in your Outlook, and displays the list of all attached files that it finds. You can easily select one or more attachments and save all of them into the desired folder, as well as you can delete unwanted large attachments that take too much disk space in...

MS10-087 Microsoft Word RTF pFragments Stack Buffer Overflow (File Format)

This module exploits a stack-based buffer overflow in the handling of the 'pFragments' shape property within the Microsoft Word RTF parser. All versions of Microsoft Office 2010, 2007, 2003, and XP prior to the release of the MS10-087 bulletin are vulnerable. This module does not attempt to explo...

Microsoft Outlook TNEF Remote Code Execution Vulnerability (2315011)

This host is missing a critical security update according to Microsoft Bulletin MS10-064. OpenVAS Vulnerability Test $Id: secpodms10-064.nasl 6538 2017-07-05 11:38:27Z cfischer $ Microsoft Outlook TNEF Remote Code Execution Vulnerability 2315011 Authors: Antu Sanadi Copyright: Copyright c 2010...

Security Update for Microsoft Office Outlook 2003 (KB973705)

A security vulnerability exists in Microsoft Office Outlook 2003 that could allow arbitrary code to run when a maliciously modified web page is opened. This update resolves that vulnerability...

Microsoft Visual Studio ATL 'VariantClear()' Remote Code Execution Vulnerability

Description Microsoft Visual Studio is prone to a remote code-execution vulnerability in the Active Template Library ATL. Remote attackers can exploit this issue to execute arbitrary code with the privileges of the user running an application built with the affected library. Technologies Affected...

CVE-2006-2055

Argument injection vulnerability in Microsoft Outlook 2003 SP1 allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " double quote characters in a mailto: scheme handler, as demonstrated by launching Microsoft Outlook with an arbitrary filename as a...

PT-2006-3036 · Microsoft · Outlook

Name of the Vulnerable Software and Affected Versions: Microsoft Outlook version 2003 SP1 Description: The issue allows user-assisted remote attackers to modify command line arguments to an invoked mail client via " double quote characters in a mailto: scheme handler. This can be demonstrated by...

Security Update for Outlook 2003 (KB892843)

A security vulnerability exists in Microsoft Office Outlook 2003 that could allow arbitrary code to run when opening a maliciously modified email. This update resolves the vulnerability...

CVE-2004-2482

Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does not properly handle an opening OBJECT tag that does not have a closing OBJECT tag, which causes Outlook to automatically download the URI in the data property ...

CVE-2005-1052

Microsoft Outlook 2003 and Outlook Web Access OWA 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote attackers to spoof e-mail addresses...

Microsoft Outlook 2003 - Security Policy Bypass

Microsoft Outlook 2003 - Security Policy Bypass source: https://www.securityfocus.com/bid/11446/info Microsoft Outlook 2003 is reported prone to a security policy bypass vulnerability. It is reported that by including a base64 encoded image in an email and labeling that image in a sufficient...

Microsoft Outlook 2003 - Security Policy Bypass

source: https://www.securityfocus.com/bid/11446/info Microsoft Outlook 2003 is reported prone to a security policy bypass vulnerability. It is reported that by including a base64 encoded image in an email and labeling that image in a sufficient manner, it is then possible to reference this base64...

CVE-2004-0502

Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the original message, which allows remote attackers to bypass zone restrictions and exploit other issues that rely on predictable locations, as demonstrated using a shel...

CVE-2004-0503

Microsoft Outlook 2003 allows remote attackers to bypass the default zone restrictions and execute script within media files via a Rich Text Format RTF message containing an OLE object for the Windows Media Player, which bypasses Media Player's setting to disallow scripting and may lead to...

CVE-2004-0501

Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language VML entity whose src parameter points to the remote site, which could allow remote attackers to know whe...