Описание
Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers to cause a denial of service (memory exhaustion and interrupted mail recovery) via malformed e-mail header information, possibly related to (1) long subject lines or (2) large numbers of recipients in To or CC headers.
Ссылки
- PatchVendor Advisory
- Patch
- US Government Resource
- Patch
- US Government Resource
- Vendor Advisory
- PatchVendor Advisory
- Patch
- US Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:office:2000:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook:2000:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook:2002:*:*:*:*:*:*:*
Конфигурация 3
Одно из
cpe:2.3:a:microsoft:office:2003:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook:2003:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.51832
Средний
4.3 Medium
CVSS2
Дефекты
CWE-399
Связанные уязвимости
github
почти 4 года назад
Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers to cause a denial of service (memory exhaustion and interrupted mail recovery) via malformed e-mail header information, possibly related to (1) long subject lines or (2) large numbers of recipients in To or CC headers.
EPSS
Процентиль: 98%
0.51832
Средний
4.3 Medium
CVSS2
Дефекты
CWE-399