CVE-2000-0415Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Outlook

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
11.7%
top 6.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft OutlookMicrosoft Outlook Express
Timeline
PublishedMay 12
Latest updateApr 30

Description

Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDmicrosoft/outlook_express6 versions+5

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-fcfq-f9jq-4c28: Buffer overflow in Outlook Express 42022-04-30
CVEList
CVE-2000-0415: Buffer overflow in Outlook Express 42000-06-15
CVE-2000-0415 — Microsoft Outlook vulnerability | cvebase