CVSS: 6.5EPSS: 51%CPEs: 32EXPL: 2CVE-2004-0526 – Microsoft Internet Explorer 4/5/6 - Embedded Image URI Obfuscation
https://notcve.org/view.php?id=CVE-2004-0526
08 Jun 2004 — Unknown versions of Internet Explorer and Outlook allow remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack. Versiones desconocidas de Internet Explorer y Outlook permiten a atacantes remotos suplantar URL legítimas en la barra de estado mediante etiquetas A HREF con valores "alt" modificados que apuntan al sitio legí... • https://www.exploit-db.com/exploits/24102 •
CVSS: 10.0EPSS: 68%CPEs: 1EXPL: 2CVE-2001-0538 – Microsoft Outlook 98/2000/2002 - Arbitrary Code Execution
https://notcve.org/view.php?id=CVE-2001-0538
14 Aug 2001 — Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a malicious HTML e-mail message or web page. • https://www.exploit-db.com/exploits/21004 •
CVSS: 7.5EPSS: 31%CPEs: 11EXPL: 3CVE-2001-1088 – Microsoft Outlook 97/98/2000/4/5 - Address Book Spoofing
https://notcve.org/view.php?id=CVE-2001-1088
05 Jun 2001 — Microsoft Outlook 8.5 and earlier, and Outlook Express 5 and earlier, with the "Automatically put people I reply to in my address book" option enabled, do not notify the user when the "Reply-To" address is different than the "From" address, which could allow an untrusted remote attacker to spoof legitimate addresses and intercept email from the client that is intended for another user. • https://www.exploit-db.com/exploits/20899 •
CVSS: 7.5EPSS: 18%CPEs: 3EXPL: 0CVE-2000-0753
https://notcve.org/view.php?id=CVE-2000-0753
20 Oct 2000 — The Microsoft Outlook mail client identifies the physical path of the sender's machine within a winmail.dat attachment to Rich Text Format (RTF) files. • http://www.securityfocus.com/archive/1/201422 •
CVSS: 7.5EPSS: 5%CPEs: 7EXPL: 0CVE-2000-0621
https://notcve.org/view.php?id=CVE-2000-0621
20 Jul 2000 — Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote attackers to read files on the client's system via a malformed HTML message that stores files outside of the cache, aka the "Cache Bypass" vulnerability. • http://www.cert.org/advisories/CA-2000-14.html •
CVSS: 9.8EPSS: 22%CPEs: 6EXPL: 2CVE-2000-0567 – Microsoft Outlook 97/98/2000 / Outlook Express 4.0/5.0 - GMT Field Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0567
18 Jul 2000 — Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an email header, aka the "Malformed E-mail Header" vulnerability. • https://www.exploit-db.com/exploits/20078 •
CVSS: 7.5EPSS: 15%CPEs: 3EXPL: 0CVE-2000-0524
https://notcve.org/view.php?id=CVE-2000-0524
05 Jun 2000 — Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From. • http://archives.neohapsis.com/archives/bugtraq/2000-06/0045.html •
CVSS: 7.5EPSS: 6%CPEs: 4EXPL: 0CVE-1999-1164
https://notcve.org/view.php?id=CVE-1999-1164
25 Jun 1999 — Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which causes Outlook to hang. • http://marc.info/?l=bugtraq&m=93041631215856&w=2 •