CVE-2004-2482

EPSS 21.36%
Veröffentlicht 31.12.2004 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does not properly handle an opening OBJECT tag that does not have a closing OBJECT tag, which causes Outlook to automatically download the URI in the data property of the OBJECT tag and might allow remote attackers to execute arbitrary code.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Outlook Version2000

Microsoft ≫ Outlook Version2003

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	21.36%	0.955

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

http://secunia.com/advisories/12041

http://www.osvdb.org/7769

http://www.securityfocus.com/archive/1/368492

Vendor Advisory

http://www.securityfocus.com/bid/10683

https://exchange.xforce.ibmcloud.com/vulnerabilities/16663

https://nvd.nist.gov/vuln/detail/CVE-2004-2482

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-2482

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-2482

EUVD