CVSS: 5.0EPSS: 3%CPEs: 6EXPL: 2CVE-2000-0567 – Microsoft Outlook 97/98/2000 / Outlook Express 4.0/5.0 - GMT Field Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0567
Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability. • https://www.exploit-db.com/exploits/20078 https://www.exploit-db.com/exploits/20079 http://www.securityfocus.com/bid/1481 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-043 https://exchange.xforce.ibmcloud.com/vulnerabilities/4953 •
CVSS: 5.0EPSS: 0%CPEs: 7EXPL: 0CVE-2000-0415
https://notcve.org/view.php?id=CVE-2000-0415
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name. • http://archives.neohapsis.com/archives/bugtraq/2000-05/0140.html http://www.securityfocus.com/bid/1195 •
CVSS: 5.0EPSS: 86%CPEs: 1EXPL: 1CVE-2000-0105 – Microsoft Outlook Express 5 - JavaScript Email Access
https://notcve.org/view.php?id=CVE-2000-0105
Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client. • https://www.exploit-db.com/exploits/19738 http://www.securityfocus.com/bid/962 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2000-0036
https://notcve.org/view.php?id=CVE-2000-0036
Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability. • http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ249082 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-060 •
CVSS: 5.1EPSS: 1%CPEs: 20EXPL: 1CVE-2000-0329 – Microsoft Internet Explorer 4.x/5 / Outlook 2000 0/98 0/Express 4.x - ActiveX '.CAB' File Execution
https://notcve.org/view.php?id=CVE-2000-0329
A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability. • https://www.exploit-db.com/exploits/19603 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-048 •