CVE-2004-2482

EPSS 21.36%
Published 31.12.2004 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does not properly handle an opening OBJECT tag that does not have a closing OBJECT tag, which causes Outlook to automatically download the URI in the data property of the OBJECT tag and might allow remote attackers to execute arbitrary code.

Affected products Warnungen 0 Metrics 2 CWE 0 References 8

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Outlook Version2000

Microsoft ≫ Outlook Version2003

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	21.36%	0.955

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

http://secunia.com/advisories/12041

http://www.osvdb.org/7769

http://www.securityfocus.com/archive/1/368492

Vendor Advisory

http://www.securityfocus.com/bid/10683

https://exchange.xforce.ibmcloud.com/vulnerabilities/16663

https://nvd.nist.gov/vuln/detail/CVE-2004-2482

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-2482

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-2482

EUVD