2 matches found
Microsoft Outlook RTF Embedded Object Security Bypass (CVE-2004-0503)
A security bypass vulnerability exists in Microsoft Outlook. The vulnerability is due to a lack of validation for certain OLE objects attached to RTF messages. A successful exploitation may lead to unprompted installation of an executable when exploited in conjunction with predictable-file-locati...
CVE-2004-0503
Microsoft Outlook 2003 is affected by CVE-2004-0503 due to a security bypass in RTF handling: lack of validation for certain OLE objects attached to RTF messages may bypass Media Player scripting restrictions and could lead to unprompted executable installation when combined with predictable-file...