CVE-2004-2694

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook Express
Vendor: CVE Published:; 31 December 2004

Summary

Microsoft Outlook Express 6.0 allows remote attackers to bypass intended access restrictions, load content from arbitrary sources into the Outlook context, and facilitate phishing attacks via a "BASE HREF" with the target set to "_top".

References

http://marc.info/?l=bugtraq&m=108448627120764&w=2

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/11607

third-party-advisoryx_refsource_SECUNIA

http://www.osvdb.org/6121

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability Reserved
Oct 6, 2007
Vulnerability published
Dec 31, 2004

Collectors

NVD DatabaseMitre Database