CVSS: 5.0EPSS: 3%CPEs: 6EXPL: 2CVE-2000-0567 – Microsoft Outlook 97/98/2000 / Outlook Express 4.0/5.0 - GMT Field Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0567
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability. • https://www.exploit-db.com/exploits/20078 https://www.exploit-db.com/exploits/20079 http://www.securityfocus.com/bid/1481 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-043 https://exchange.xforce.ibmcloud.com/vulnerabilities/4953 •
CVSS: 5.0EPSS: 86%CPEs: 1EXPL: 1CVE-2000-0105 – Microsoft Outlook Express 5 - JavaScript Email Access
https://notcve.org/view.php?id=CVE-2000-0105
Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client. • https://www.exploit-db.com/exploits/19738 http://www.securityfocus.com/bid/962 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2000-0036
https://notcve.org/view.php?id=CVE-2000-0036
Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability. • http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ249082 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-060 •
CVSS: 5.1EPSS: 1%CPEs: 20EXPL: 1CVE-2000-0329 – Microsoft Internet Explorer 4.x/5 / Outlook 2000 0/98 0/Express 4.x - ActiveX '.CAB' File Execution
https://notcve.org/view.php?id=CVE-2000-0329
A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability. • https://www.exploit-db.com/exploits/19603 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-048 •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 2CVE-1999-1016 – Microsoft Internet Explorer 5 - HTML Form Control Denial of Service
https://notcve.org/view.php?id=CVE-1999-1016
Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell. • https://www.exploit-db.com/exploits/19471 http://marc.info/?l=ntbugtraq&m=93578772920970&w=2 http://www.securityfocus.com/bid/606 •