← back
CVE-2004-0501

CVE-2004-0501

EPSS 18.7%
Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow remote attackers to know when a message has been read, verify valid e-mail addresses, and possibly leak other information.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/24114unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=108430168919965&w=2http://marc.info/?l=bugtraq&m=108637351805607&w=2http://marc.info/?l=ntbugtraq&m=108644231209698&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/16116http://www.securityfocus.com/bid/10323