Vulnerabilities > Microsoft > Outlook > 98

DATE CVE VULNERABILITY TITLE RISK
2004-08-06 CVE-2004-0526 Unspecified vulnerability in Microsoft products
Unknown versions of Internet Explorer and Outlook allow remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack.
network
low complexity
microsoft
5.0
2001-08-14 CVE-2001-0538 Unspecified vulnerability in Microsoft Outlook
Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a malicious HTML e-mail message or web page.
network
low complexity
microsoft
critical
10.0
2001-05-03 CVE-2001-0145 Unspecified vulnerability in Microsoft Outlook and Outlook Express
Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker to execute arbitrary commands via a malformed vCard birthday field.
network
low complexity
microsoft
7.5
2000-10-20 CVE-2000-0753 Unspecified vulnerability in Microsoft Outlook 2000/97/98
The Microsoft Outlook mail client identifies the physical path of the sender's machine within a winmail.dat attachment to Rich Text Format (RTF) files.
network
low complexity
microsoft
5.0
2000-07-20 CVE-2000-0621 Unspecified vulnerability in Microsoft Outlook and Outlook Express
Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote attackers to read files on the client's system via a malformed HTML message that stores files outside of the cache, aka the "Cache Bypass" vulnerability.
network
low complexity
microsoft
7.5
2000-07-18 CVE-2000-0567 Unspecified vulnerability in Microsoft Outlook and Outlook Express
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability.
network
low complexity
microsoft
5.0
2000-05-12 CVE-2000-0415 Unspecified vulnerability in Microsoft Outlook and Outlook Express
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.
network
low complexity
microsoft
5.0
1999-11-11 CVE-2000-0329 Unspecified vulnerability in Microsoft products
A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability.
network
high complexity
microsoft
5.1
1999-06-25 CVE-1999-1164 Unspecified vulnerability in Microsoft Outlook and Outlook Express
Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which causes Outlook to hang.
network
low complexity
microsoft
5.0
1999-01-01 CVE-1999-0384 Unspecified vulnerability in Microsoft products
The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content.
local
low complexity
microsoft
4.6