Vulnerabilities > CVE-2005-2226 - Multiple vulnerability in Microsoft Outlook Express 6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Microsoft Outlook Express 6.0 leaks the default news server account when a user responds to a "watched" conversation thread, which could allow remote attackers to obtain sensitive information.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Nessus
NASL family | Windows |
NASL id | SMB_KB900930.NASL |
description | The remote host runs a version of Outlook Express that contains multiple vulnerabilities. An attacker may exploit these vulnerabilities to disable the Outlook Express client of a victim. To exploit these issues, an attacker would need to send a malformed email message to a victim and wait for him to read it using outlook. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 18680 |
published | 2005-07-12 |
reporter | This script is Copyright (C) 2005-2018 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/18680 |
title | MS KB900930: Microsoft Outlook Express Multiple Vulnerabilities |
code |
|