CVE-2004-0501

Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow remote attackers to know when a message has been read, verify valid e-mail addresses, and possibly leak other information.
Configurations

Configuration 1 (hide)

cpe:2.3:a:microsoft:outlook:2003:*:*:*:*:*:*:*

History

20 Nov 2024, 23:48

Type Values Removed Values Added
References () http://marc.info/?l=bugtraq&m=108430168919965&w=2 - () http://marc.info/?l=bugtraq&m=108430168919965&w=2 -
References () http://marc.info/?l=bugtraq&m=108637351805607&w=2 - () http://marc.info/?l=bugtraq&m=108637351805607&w=2 -
References () http://marc.info/?l=ntbugtraq&m=108644231209698&w=2 - () http://marc.info/?l=ntbugtraq&m=108644231209698&w=2 -
References () http://www.securityfocus.com/bid/10323 - Exploit, Vendor Advisory () http://www.securityfocus.com/bid/10323 - Exploit, Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/16116 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/16116 -

Information

Published : 2004-08-18 04:00

Updated : 2024-11-20 23:48


NVD link : CVE-2004-0501

Mitre link : CVE-2004-0501

CVE.ORG link : CVE-2004-0501


JSON object : View

Products Affected

microsoft

  • outlook