CVE-2004-2482

Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does not properly handle an opening OBJECT tag that does not have a closing OBJECT tag, which causes Outlook to automatically download the URI in the data property of the OBJECT tag and might allow remote attackers to execute arbitrary code.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:outlook:2000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook:2003:*:*:*:*:*:*:*

History

20 Nov 2024, 23:53

Type Values Removed Values Added
References () http://secunia.com/advisories/12041 - () http://secunia.com/advisories/12041 -
References () http://www.osvdb.org/7769 - () http://www.osvdb.org/7769 -
References () http://www.securityfocus.com/archive/1/368492 - Vendor Advisory () http://www.securityfocus.com/archive/1/368492 - Vendor Advisory
References () http://www.securityfocus.com/bid/10683 - () http://www.securityfocus.com/bid/10683 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/16663 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/16663 -

Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:53


NVD link : CVE-2004-2482

Mitre link : CVE-2004-2482

CVE.ORG link : CVE-2004-2482


JSON object : View

Products Affected

microsoft

  • outlook