Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0007

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-0007
Last Modified 10 Sep 2008 08:05:22
Published 07 Feb 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0007

Summary

Microsoft Outlook 2002 does not properly handle requests to encrypt email messages with V1 Exchange Server Security certificates, which causes Outlook to send the email in plaintext, aka "Flaw in how Outlook 2002 handles V1 Exchange Server Security Certificates could lead to Information Disclosure."

Vulnerable Systems

Application

  • Microsoft Outlook 2002


References

MS - MS03-003

XF - outlook-v1-certificate-plaintext(11133)

BID - 6667


Last Updated: 27 May 2016 10:37:45