2 matches found
CVE-2007-3897
CVE-2007-3897 corresponds to a heap-based buffer overflow in the NNTP handling of Microsoft Outlook Express (versions up to 6) and Windows Mail (Vista). The vulnerability arises when processing NNTP replies that return more data than requested, allowing attacker-controlled data to overflow the al...
CVE-2018-8305
CVE-2018-8305 affects Windows Mail Client components (Mail, Calendar, and People) on Windows 8.1 App Store. The vulnerability is information disclosure that occurs when a user opens a crafted message; an attacker can trigger the client to disclose sensitive information to a malicious site/remote ...