Vulnerabilities > CVE-2004-0502 - Unspecified vulnerability in Microsoft Outlook 2003

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
microsoft
exploit available

Summary

Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the original message, which allows remote attackers to bypass zone restrictions and exploit other issues that rely on predictable locations, as demonstrated using a shell: URI.

Vulnerable Configurations

Part Description Count
Application
Microsoft
1

Exploit-Db

descriptionMicrosoft Outlook 2003 Predictable File Location Weakness. CVE-2004-0502. Remote exploit for windows platform
idEDB-ID:24101
last seen2016-02-02
modified2004-05-10
published2004-05-10
reporterhttp-equiv
sourcehttps://www.exploit-db.com/download/24101/
titleMicrosoft Outlook 2003 Predictable File Location Weakness