Outlook Express@6.0 Security Vulnerabilities and Issues — Outlook Express@6.0 CVE List

Lucene search

MicrosoftOutlook Express6.0

6 matches found

CVE•added 2005/06/14 4:0 a.m.•50 views

CVE-2005-1213

Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.

7.5CVSS7.6AI score0.83908EPSS

CVE•added 2005/11/16 9:17 p.m.•41 views

CVE-2002-2164

Buffer overflow in Microsoft Outlook Express 5.0, 5.5, and 6.0 allows remote attackers to cause a denial of service (crash) via a long <a href> link.

5CVSS7.2AI score0.30063EPSS

CVE•added 2005/11/16 9:17 p.m.•36 views

CVE-2002-2202

Outlook Express 6.0 does not delete messages from dbx files, even when a user empties the Deleted items folder, which allows local users to read other users email.

3.8CVSS6.5AI score0.00414EPSS

CVE•added 2005/07/14 4:0 a.m.•33 views

CVE-2001-1547

Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, does not block email attachments from forwarded messages, which could allow remote attackers to execute arbitrary code.

7.5CVSS7.8AI score0.24362EPSS

CVE•added 2005/07/12 4:0 a.m.•33 views

CVE-2005-2226

Microsoft Outlook Express 6.0 leaks the default news server account when a user responds to a "watched" conversation thread, which could allow remote attackers to obtain sensitive information.

5CVSS6.4AI score0.35365EPSS

CVE•added 2005/06/14 4:0 a.m.•30 views

CVE-2004-2137

Outlook Express 6.0, when sending multipart e-mail messages using the "Break apart messages larger than" setting, leaks the BCC recipients of the message to the addresses listed in the To and CC fields, which may allow remote attackers to obtain sensitive information.

5CVSS6.9AI score0.33173EPSS