Microsoft Outlook for iPhone OS

CPE Details

Microsoft Outlook for iPhone OS
microsoft
outlook
-
2019-07-29
10h57 +00:00
2019-07-29
10h57 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:microsoft:outlook:-:*:*:*:*:iphone_os:*:*

Informations

Vendor

microsoft

Product

outlook

Version

-

Target Software

iphone_os

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-43482 2024-09-10 16h53 +00:00 Microsoft Outlook for iOS Information Disclosure Vulnerability
6.5
Medium
CVE-2024-20670 2024-04-09 17h01 +00:00 Outlook for Windows Spoofing Vulnerability
8.1
High
CVE-2019-1218 2019-08-14 18h55 +00:00 A spoofing vulnerability exists in the way Microsoft Outlook iOS software parses specifically crafted email messages. An authenticated attacker could exploit the vulnerability by sending a specially crafted email message to a victim. The attacker who successfully exploited this vulnerability could then perform cross-site scripting attacks on the affected systems and run scripts in the security context of the current user. The security update addresses the vulnerability by correcting how Outlook iOS parses specially crafted email messages.
5.4
Medium
CVE-2019-1084 2019-07-15 16h56 +00:00 An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could exploit this vulnerability by creating entities with invalid display names, which, when added to conversations, remain invisible. This security update addresses the issue by validating display names upon creation in Microsoft Exchange, and by rendering invalid display names correctly in Microsoft Outlook clients., aka 'Microsoft Exchange Information Disclosure Vulnerability'.
6.5
Medium
CVE-2007-4040 2007-07-27 22h00 +00:00 Argument injection vulnerability involving Microsoft Outlook and Outlook Express, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in an unspecified URI, which are inserted into the command line when invoking the handling process, a similar issue to CVE-2007-3670.
4.3
CVE-2006-6659 2006-12-20 02h00 +00:00 The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service (Internet Explorer 7 hang) via crafted HTML.
5
CVE-2001-0538 2002-03-09 04h00 +00:00 Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a malicious HTML e-mail message or web page.
10
CVE-2000-0216 2000-03-22 04h00 +00:00 Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with responses by forging a Read Receipt request that is redirected to a large distribution list.
5
CVE-2000-0160 2000-02-23 04h00 +00:00 The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft.
7.6