Buffer Overflow Vulnerability in Microsoft Outlook Express
CVE-2002-2164

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook Express
Vendor: CVE Published:; 31 December 2002

Summary

A buffer overflow vulnerability exists in Microsoft Outlook Express versions 5.0, 5.5, and 6.0 that enables remote attackers to execute a denial of service. By sending specially crafted long hyperlink tags (), an attacker can exploit this flaw to crash the application, resulting in service disruption. Users of affected versions should apply patches or updates to mitigate potential risks.

References

http://online.securityfocus.com/archive/1/291058

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/5682

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/10067.php

vdb-entryx_refsource_XF

EPSS Score

30% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002