Vulnerability Details CVE-2001-1547
Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, does not block email attachments from forwarded messages, which could allow remote attackers to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.244
EPSS Ranking 95.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.iss.net/security_center/static/7670.php
- http://www.securityfocus.com/archive/1/243869
- http://www.windows-help.net/microsoft/oe6-attach.html
- http://www.iss.net/security_center/static/7670.php
- http://www.securityfocus.com/archive/1/243869
- http://www.windows-help.net/microsoft/oe6-attach.html
Products affected by CVE-2001-1547
-
cpe:2.3:a:microsoft:outlook_express:6.0