Vulnerabilities > CVE-2002-2202 - Local Security vulnerability in Microsoft Outlook Express 6.0

047910
CVSS 3.8 - LOW
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
SINGLE
Confidentiality impact
COMPLETE
Integrity impact
NONE
Availability impact
NONE
local
high complexity
microsoft

Summary

Outlook Express 6.0 does not delete messages from dbx files, even when a user empties the Deleted items folder, which allows local users to read other users email. This vulnerability affects Outlook Express 6.0 on any version of the Windows OS.

Vulnerable Configurations

Part Description Count
Application
Microsoft
1