Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0503

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0503
Last Modified 05 Sep 2008 04:38:35
Published 18 Aug 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0503

Summary

Microsoft Outlook 2003 allows remote attackers to bypass the default zone restrictions and execute script within media files via a Rich Text Format (RTF) message containing an OLE object for the Windows Media Player, which bypasses Media Player's setting to disallow scripting and may lead to unprompted installation of an executable when exploited in conjunction with predictable-file-location exposures such as CVE-2004-0502.

Vulnerable Systems

Application

  • Microsoft Outlook 2003


References

BID - 10369

XF - outlook-ole-restriction-bypass(16173)

BUGTRAQ - 20040517 ROCKET SCIENCE: Outllook 2003

OSVDB - 6217

SECUNIA - 11629


Last Updated: 27 May 2016 10:38:38