CVE-2004-0502

Published: Aug 18, 2004Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the original message, which allows remote attackers to bypass zone restrictions and exploit other issues that rely on predictable locations, as demonstrated using a shell: URI.

Affected (1)

Products: Microsoft: Outlook

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Outlook	Version 2003

References (12)

http://marc.info/?l=bugtraq&m=108420583612655&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=108637351805607&w=2

Source: cve@mitre.org

http://marc.info/?l=ntbugtraq&m=108644231209698&w=2

Source: cve@mitre.org

http://secunia.com/advisories/11572

Source: cve@mitre.org

http://www.securityfocus.com/bid/10307

Source: cve@mitre.org

ExploitVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/16104

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=108420583612655&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=108637351805607&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=ntbugtraq&m=108644231209698&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/11572

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/10307

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/16104

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.