Описание
Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote attackers to execute arbitrary programs via an HTML email with the CODEBASE parameter set to the program, a vulnerability similar to CAN-2002-0077.
Ссылки
- Exploit
- Exploit
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:outlook:2000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook:2000:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook:2000:sr1:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook_express:6.0:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.38009
Средний
8.8 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote attackers to execute arbitrary programs via an HTML email with the CODEBASE parameter set to the program, a vulnerability similar to CAN-2002-0077.
EPSS
Процентиль: 97%
0.38009
Средний
8.8 High
CVSS2
Дефекты
CWE-264