Microsoft outlook_express 4.72.3612.1700

CPE Details

Microsoft outlook_express 4.72.3612.1700
microsoft
outlook_express
4.72.3612.1700
2007-08-28
19h32 +00:00
2007-09-14
15h36 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:microsoft:outlook_express:4.72.3612.1700:*:*:*:*:*:*:*

Informations

Vendor

microsoft

Product

outlook_express

Version

4.72.3612.1700

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2007-3897 2007-10-09 20h00 +00:00 Heap-based buffer overflow in Microsoft Outlook Express 6 and earlier, and Windows Mail for Vista, allows remote Network News Transfer Protocol (NNTP) servers to execute arbitrary code via long NNTP responses that trigger memory corruption.
9.3
CVE-2007-4040 2007-07-27 22h00 +00:00 Argument injection vulnerability involving Microsoft Outlook and Outlook Express, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in an unspecified URI, which are inserted into the command line when invoking the handling process, a similar issue to CVE-2007-3670.
4.3
CVE-1999-1033 2001-09-12 02h00 +00:00 Microsoft Outlook Express before 4.72.3612.1700 allows a malicious user to send a message that contains a .., which can inadvertently cause Outlook to re-enter POP3 command mode and cause the POP3 session to hang.
5
CVE-1999-1164 2001-09-12 02h00 +00:00 Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL headers, which causes Outlook to hang.
5
CVE-2000-0415 2000-06-15 02h00 +00:00 Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name.
5
CVE-2000-0329 2000-06-02 02h00 +00:00 A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability.
5.1
CVE-1999-0967 2000-01-04 04h00 +00:00 Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol.
10