12 matches found
CVE-2003-1378
Technical details for CVE-2003-1378 are not publicly available in the provided documents. Monitor for updates from vendors and security bulletins for affected products and fixes.
CVE-2004-2482
Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does not properly handle an opening OBJECT tag that does not have a closing OBJECT tag, which causes Outlook to automatically download the URI in the data property ...
CVE-2003-1378
Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote attackers to execute arbitrary programs via an HTML email with the CODEBASE parameter set to the program, a vulnerability similar to CAN-2002-0077...
MS02-021: Word Mail Reply Arbitrary Script Execution (321804)
Outlook 2000 and 2002 provide the option to use Microsoft Word as the email editor when creating and editing email in RTF or HTML. There is a flaw in some versions of Word that could allow an attacker to execute arbitrary code when the user replies to a specially formed message using Word. An...
Microsoft Outlook 2000 V1 Exchange server certificates flaw
Message may be sent unecrypted...
CVE-2001-0145
CVE-2001-0145 affects Outlook 2000/98 and Outlook Express 5.x, where a buffer overflow in the VCard handler can be triggered by a malformed vCard birthday field, allowing an attacker to execute arbitrary commands. The root cause described is a faulty VCard birthday parsing leading to memory corru...
Security Advisory: Microsoft Outlook 2000 vCard Buffer Overrun (additional information) - Revised
-- Corsaire Limited Security Advisory -- Title: Microsoft Outlook 2000 vCard Buffer Overrun additional information - Revised Date: 01.03.01 Application: Outlook 2000, Outlook Express Environment: WinNT, Win2000 Author: Martin O'Neal [email protected] Audience: General distribution -- Scop...
CVE-2000-0756
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard .vcf files, which allows attackers to cause a denial of service...
Malformed Embedded Windows Media Player 7 "OCX Attachment" Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Malformed Embedded Windows Media Player 7 "OCX Attachment" Vulnerability USSR Advisory Code: USSR-2000053 Public Disclosure Date: September 26, 2000 Vendors Affected: Microsoft Corporation http://www.microsoft.com Systems Affected: Outlook 2000...
CVE-2000-0756
CVE-2000-0756 affects Microsoft Outlook 2000, where the application does not properly process long or malformed vCard (.vcf) fields, enabling a denial of service. The root cause is improper handling of vCard fields during parsing. The available documents do not provide exploitable details, proof-...
vCard DoS on Outlook 2000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Vulnerability in vCard import in Outlook 2000 Released: August 30, 2000 Summary ======= Under certain conditions, excessively long or malformed fields in a vCard .vcf file can cause Microsoft Outlook 2000 to either overflow or excessively utilize syst...
Microsoft Internet Explorer 4.x/5 / Outlook 2000 0/98 0/Express 4.x - ActiveX '.CAB' File Execution
Microsoft Internet Explorer 4.0 for Windows 95/Windows NT 4,Internet Explorer 4.1 for Windows 95/Windows 98/Windows NT 4,Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Internet Explorer 4.0.1 for Windows 98/Windows NT 4.0,Outlook 2000 0/98 0,Outlook Express...