Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow remote attackers to know when a message has been read, verify valid e-mail addresses, and possibly leak other information.
References
Configurations
History
20 Nov 2024, 23:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=bugtraq&m=108430168919965&w=2 - | |
References | () http://marc.info/?l=bugtraq&m=108637351805607&w=2 - | |
References | () http://marc.info/?l=ntbugtraq&m=108644231209698&w=2 - | |
References | () http://www.securityfocus.com/bid/10323 - Exploit, Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/16116 - |
Information
Published : 2004-08-18 04:00
Updated : 2024-11-20 23:48
NVD link : CVE-2004-0501
Mitre link : CVE-2004-0501
CVE.ORG link : CVE-2004-0501
JSON object : View
Products Affected
microsoft
- outlook
CWE