Vulnerability Details CVE-2002-2101
Microsoft Outlook 2002 allows remote attackers to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or "javascript:" URI in the href attribute of an "a" tag.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.169
EPSS Ranking 94.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2002-03/0267.html
- http://www.iss.net/security_center/static/8613.php
- http://www.securityfocus.com/bid/4337
- http://archives.neohapsis.com/archives/bugtraq/2002-03/0267.html
- http://www.iss.net/security_center/static/8613.php
- http://www.securityfocus.com/bid/4337