cbcvebase.
CVE-2002-0481
published 2002-08-12

CVE-2002-0481: An interaction between Windows Media Player (WMP) and Outlook 2002 allows remote attackers to bypass Outlook security settings and execute Javascript via an…

PriorityP420medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
10.06%
95.0th percentile
An interaction between Windows Media Player (WMP) and Outlook 2002 allows remote attackers to bypass Outlook security settings and execute Javascript via an IFRAME in an HTML email message that references .WMS (Windows Media Skin) or other WMP media files, whose onload handlers execute the player.LaunchURL() Javascript function.

Affected

1 ranges
VendorProductVersion rangeFixed in
microsoftoutlook
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.