Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2100

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-2100
Last Modified 05 Sep 2008 04:32:19
Published 31 Dec 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-2100

Summary

Microsoft Outlook 2002 allows remote attackers to embed bypass the file download restrictions for attachments via an HTML email message that uses an IFRAME to reference malicious content.

Vulnerable Systems

Application

  • Microsoft Outlook 2000

  • Microsoft Outlook 2002


References

BID - 4334

XF - outlook-iframe-url(8611)

BUGTRAQ - 20020320 Questionable security policies in Outlook 2002


Last Updated: 27 May 2016 10:37:36