CVSS: 9.8EPSS: 3%CPEs: 6EXPL: 2CVE-2000-0567 – Microsoft Outlook 97/98/2000 / Outlook Express 4.0/5.0 - GMT Field Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0567
18 Jul 2000 — Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability. • https://www.exploit-db.com/exploits/20078 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2000-0524
https://notcve.org/view.php?id=CVE-2000-0524
05 Jun 2000 — Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From. • http://archives.neohapsis.com/archives/bugtraq/2000-06/0045.html •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2000-0415
https://notcve.org/view.php?id=CVE-2000-0415
12 May 2000 — Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name. • http://archives.neohapsis.com/archives/bugtraq/2000-05/0140.html •
CVSS: 7.5EPSS: 2%CPEs: 10EXPL: 0CVE-2000-0419
https://notcve.org/view.php?id=CVE-2000-0419
11 May 2000 — The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability. • http://www.cert.org/advisories/CA-2000-07.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2000-0216
https://notcve.org/view.php?id=CVE-2000-0216
29 Feb 2000 — Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with responses by forging a Read Receipt request that is redirected to a large distribution list. • http://archives.neohapsis.com/archives/ntbugtraq/2000-q1/0176.html •
CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2000-0160
https://notcve.org/view.php?id=CVE-2000-0160
21 Feb 2000 — The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft. • http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000221103938.T21312%40securityfocus.com •
CVSS: 5.3EPSS: 86%CPEs: 1EXPL: 1CVE-2000-0105 – Microsoft Outlook Express 5 - JavaScript Email Access
https://notcve.org/view.php?id=CVE-2000-0105
01 Feb 2000 — Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client. • https://www.exploit-db.com/exploits/19738 •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2000-0036
https://notcve.org/view.php?id=CVE-2000-0036
22 Dec 1999 — Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability. • http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ249082 •
CVSS: 8.8EPSS: 1%CPEs: 20EXPL: 1CVE-2000-0329 – Microsoft Internet Explorer 4.x/5 / Outlook 2000 0/98 0/Express 4.x - ActiveX '.CAB' File Execution
https://notcve.org/view.php?id=CVE-2000-0329
11 Nov 1999 — A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability. • https://www.exploit-db.com/exploits/19603 •
CVSS: 7.4EPSS: 0%CPEs: 4EXPL: 2CVE-1999-1016 – Microsoft Internet Explorer 5 - HTML Form Control Denial of Service
https://notcve.org/view.php?id=CVE-1999-1016
27 Aug 1999 — Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell. • https://www.exploit-db.com/exploits/19471 •