Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0502

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0502
Last Modified 05 Sep 2008 04:38:35
Published 18 Aug 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0502

Summary

Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the original message, which allows remote attackers to bypass zone restrictions and exploit other issues that rely on predictable locations, as demonstrated using a shell: URI.

Vulnerable Systems

Application

  • Microsoft Outlook 2003


References

XF - outlook-file-location-predictable(16104)

BID - 10307

SECUNIA - 11572

BUGTRAQ - 20040604 RE: PING: Outlook 2003 Spam

BUGTRAQ - 20040509 OUTLOOK 2003: OuchLook


Last Updated: 27 May 2016 10:38:38