CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-2694

Microsoft Outlook Express 6.0 allows remote attackers to bypass intended access restrictions, load content from arbitrary sources into the Outlook context, and facilitate phishing attacks via a "BASE HREF" with the target set to "_top".

Exploit prediction scoring system (EPSS) score

EPSS Score 0.173

EPSS Ranking 94.7%

CVSS Severity

CVSS v2 Score 5.8

References

http://marc.info/?l=bugtraq&m=108448627120764&w=2
http://secunia.com/advisories/11607
http://www.osvdb.org/6121
http://marc.info/?l=bugtraq&m=108448627120764&w=2
http://secunia.com/advisories/11607
http://www.osvdb.org/6121

Products affected by CVE-2004-2694

Microsoft » Outlook Express » Version: 6.0

cpe:2.3:a:microsoft:outlook_express:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-2694

Products

Pricing

Contact Us