Vulnerabilities > Microsoft > Outlook Express > 4.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-09 | CVE-2007-3897 | Buffer Errors vulnerability in Microsoft Outlook Express and Windows Mail Heap-based buffer overflow in Microsoft Outlook Express 6 and earlier, and Windows Mail for Vista, allows remote Network News Transfer Protocol (NNTP) servers to execute arbitrary code via long NNTP responses that trigger memory corruption. | 9.3 |
2004-08-06 | CVE-2004-0526 | Unspecified vulnerability in Microsoft products Unknown versions of Internet Explorer and Outlook allow remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack. | 5.0 |
2000-07-20 | CVE-2000-0653 | Unspecified vulnerability in Microsoft Outlook Express Microsoft Outlook Express allows remote attackers to monitor a user's email by creating a persistent browser link to the Outlook Express windows, aka the "Persistent Mail-Browser Link" vulnerability. | 5.0 |
2000-07-20 | CVE-2000-0621 | Unspecified vulnerability in Microsoft Outlook and Outlook Express Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote attackers to read files on the client's system via a malformed HTML message that stores files outside of the cache, aka the "Cache Bypass" vulnerability. | 7.5 |
2000-07-18 | CVE-2000-0567 | Unspecified vulnerability in Microsoft Outlook and Outlook Express Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability. | 5.0 |
2000-05-12 | CVE-2000-0415 | Unspecified vulnerability in Microsoft Outlook and Outlook Express Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name. | 5.0 |
1999-05-11 | CVE-1999-1033 | Denial of Service vulnerability in Outlook Express POP Microsoft Outlook Express before 4.72.3612.1700 allows a malicious user to send a message that contains a .., which can inadvertently cause Outlook to re-enter POP3 command mode and cause the POP3 session to hang. | 5.0 |