Vulnerabilities > CVE-2001-1088 - Unspecified vulnerability in Microsoft Outlook and Outlook Express
Microsoft Outlook 8.5 and earlier, and Outlook Express 5 and earlier, with the "Automatically put people I reply to in my address book" option enabled, do not notify the user when the "Reply-To" address is different than the "From" address, which could allow an untrusted remote attacker to spoof legitimate addresses and intercept email from the client that is intended for another user.
|description||Microsoft Outlook 97/98/2000/4/5 Address Book Spoofing Vulnerability. CVE-2001-1088. Remote exploit for windows platform|
|title||Microsoft Outlook 97/98/2000/4/5 Address Book Spoofing Vulnerability|