Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Outlook_express
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 45 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2001-09-12 | CVE-2001-0999 | Outlook Express 6.00 allows remote attackers to execute arbitrary script by embedding SCRIPT tags in a message whose MIME content type is text/plain, contrary to the expected behavior that text/plain messages will not run script. | Outlook_express | N/A | ||
| 2001-12-03 | CVE-2001-0945 | Buffer overflow in Outlook Express 5.0 through 5.02 for Macintosh allows remote attackers to cause a denial of service via an e-mail message that contains a long line. | Outlook_express | N/A | ||
| 2001-05-03 | CVE-2001-0145 | Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker to execute arbitrary commands via a malformed vCard birthday field. | Outlook, Outlook_express | N/A | ||
| 2000-07-20 | CVE-2000-0653 | Microsoft Outlook Express allows remote attackers to monitor a user's email by creating a persistent browser link to the Outlook Express windows, aka the "Persistent Mail-Browser Link" vulnerability. | Outlook_express | N/A | ||
| 2000-07-20 | CVE-2000-0621 | Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote attackers to read files on the client's system via a malformed HTML message that stores files outside of the cache, aka the "Cache Bypass" vulnerability. | Outlook, Outlook_express | N/A | ||
| 2000-07-18 | CVE-2000-0567 | Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability. | Outlook, Outlook_express | N/A | ||
| 2000-05-12 | CVE-2000-0415 | Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name. | Outlook, Outlook_express | N/A | ||
| 2000-02-01 | CVE-2000-0105 | Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client. | Outlook_express | N/A | ||
| 1999-06-25 | CVE-1999-1164 | Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which causes Outlook to hang. | Outlook, Outlook_express | N/A | ||
| 1999-05-11 | CVE-1999-1033 | Microsoft Outlook Express before 4.72.3612.1700 allows a malicious user to send a message that contains a .., which can inadvertently cause Outlook to re-enter POP3 command mode and cause the POP3 session to hang. | Outlook_express | N/A |