CVE-2000-0036 — Microsoft Outlook Express vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
19.7%
top 4.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft IEMicrosoft Outlook Express
Timeline
PublishedDec 22
Latest updateApr 30

Description

Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

â–¶NVDmicrosoft/ie4.5

🔴Vulnerability Details

2
GHSA
GHSA-wh2w-hjg4-rm27: Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability↗2022-04-30
â–¶
CVEList
CVE-2000-0036: Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability↗2000-03-22
â–¶
CVE-2000-0036 — Microsoft Outlook Express vulnerability | cvebase