CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-0999

Outlook Express 6.00 allows remote attackers to execute arbitrary script by embedding SCRIPT tags in a message whose MIME content type is text/plain, contrary to the expected behavior that text/plain messages will not run script.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.127

EPSS Ranking 93.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/archive/1/213754
http://www.securityfocus.com/archive/1/214453
http://www.securityfocus.com/bid/3334
https://exchange.xforce.ibmcloud.com/vulnerabilities/7118
http://www.securityfocus.com/archive/1/213754
http://www.securityfocus.com/archive/1/214453
http://www.securityfocus.com/bid/3334
https://exchange.xforce.ibmcloud.com/vulnerabilities/7118

Products affected by CVE-2001-0999

Microsoft » Outlook Express » Version: 6.0

cpe:2.3:a:microsoft:outlook_express:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-0999

Products

Pricing

Contact Us