CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-0501

Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow remote attackers to know when a message has been read, verify valid e-mail addresses, and possibly leak other information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.504

EPSS Ranking 97.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=108430168919965&w=2
http://marc.info/?l=bugtraq&m=108637351805607&w=2
http://marc.info/?l=ntbugtraq&m=108644231209698&w=2
http://www.securityfocus.com/bid/10323
https://exchange.xforce.ibmcloud.com/vulnerabilities/16116
http://marc.info/?l=bugtraq&m=108430168919965&w=2
http://marc.info/?l=bugtraq&m=108637351805607&w=2
http://marc.info/?l=ntbugtraq&m=108644231209698&w=2
http://www.securityfocus.com/bid/10323
https://exchange.xforce.ibmcloud.com/vulnerabilities/16116

Products affected by CVE-2004-0501

Microsoft » Outlook » Version: 2003

cpe:2.3:a:microsoft:outlook:2003

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0501

Products

Pricing

Contact Us