Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0502


Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0502
Last Modified 05 Sep 2008 04:38:35
Published 18 Aug 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the original message, which allows remote attackers to bypass zone restrictions and exploit other issues that rely on predictable locations, as demonstrated using a shell: URI.

Vulnerable Systems


  • Microsoft Outlook 2003


XF - outlook-file-location-predictable(16104)

BID - 10307

SECUNIA - 11572

BUGTRAQ - 20040604 RE: PING: Outlook 2003 Spam

BUGTRAQ - 20040509 OUTLOOK 2003: OuchLook

Last Updated: 27 May 2016 10:38:38