CVE-2004-0526

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook; Outlook Express; Ie; Internet Explorer
Vendor: CVE Published:; 6 August 2004

Summary

Unknown versions of Internet Explorer and Outlook allow remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/16102

vdb-entryx_refsource_XF

http://marc.info/?l=bugtraq&m=108422905510713&w=2

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/10308

vdb-entryx_refsource_BID

EPSS Score

4% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 6, 2004
Vulnerability Reserved
Jun 3, 2004

Collectors

NVD DatabaseMitre Database