CVE-2005-1052 — Microsoft Outlook vulnerability

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

7.2%

top 8.41%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Outlook Microsoft Outlook WEB Access

Timeline

PublishedMay 2

Latest updateMay 1

Description

Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote attackers to spoof e-mail addresses.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDmicrosoft/outlook_web_access2003

▶NVDmicrosoft/outlook2003

🔴Vulnerability Details

GHSA

GHSA-87rh-5v6h-rm57: Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, whi↗2022-05-01

▶

CVEList

CVE-2005-1052: Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, whi↗2005-04-12

▶

💥Exploits & PoCs

Exploit-DB

Setuid perl - 'PerlIO_Debug()' Local Overflow↗2005-02-07

▶