CVE-2002-1179

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook Express
Vendor: CVE Published:; 28 October 2002

Summary

Buffer overflow in the S/MIME Parsing capability in Microsoft Outlook Express 5.5 and 6.0 allows remote attackers to execute arbitrary code via a digitally signed email with a long "From" address, which triggers the overflow when the user views or previews the message.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securityfocus.com/bid/5944

vdb-entryx_refsource_BID

http://marc.info/?l=ntbugtraq&m=103429681123297&w=2

mailing-listx_refsource_NTBUGTRAQ

EPSS Score

43% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 28, 2002
Vulnerability Reserved
Oct 4, 2002

Collectors

NVD DatabaseMitre Database