CVE-2001-1547
https://notcve.org/view.php?id=CVE-2001-1547
Outlook Express 6.0, with "Do not allow attachments to be saved or opened that could potentially be a virus" enabled, does not block email attachments from forwarded messages, which could allow remote attackers to execute arbitrary code. • http://www.iss.net/security_center/static/7670.php http://www.securityfocus.com/archive/1/243869 http://www.windows-help.net/microsoft/oe6-attach.html •
CVE-2001-0999
https://notcve.org/view.php?id=CVE-2001-0999
Outlook Express 6.00 allows remote attackers to execute arbitrary script by embedding SCRIPT tags in a message whose MIME content type is text/plain, contrary to the expected behavior that text/plain messages will not run script. • http://www.securityfocus.com/archive/1/213754 http://www.securityfocus.com/archive/1/214453 http://www.securityfocus.com/bid/3334 https://exchange.xforce.ibmcloud.com/vulnerabilities/7118 •