2 matches found
CVE-2004-0501
Affected software : Outlook 2003. What is vulnerable : HTML e-mails containing a Vector Markup Language (VML) entity whose src points to a remote site can cause Outlook to request that remote URL, potentially revealing read status and other information. Cause : Bypass of intended access restricti...
CVE-2004-0501
Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language VML entity whose src parameter points to the remote site, which could allow remote attackers to know whe...