CVE-2002-0285 in Outlook Expressinformazioni

Riassunto

di MITRE

Outlook Express 5.5 and 6.0 on Windows treats a carriage return ("CR") in a message header as if it were a valid carriage return/line feed combination (CR/LF), which could allow remote attackers to bypass virus protection and or other filtering mechanisms via a mail message with headers that only contain the CR, which causes Outlook to create separate headers.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

31/05/2002

Moderazione

accettato

Voce

VDB-18216

CPE

pronto

CWE

CWE-269 (confermato)

CVSS

7.3 (VulDB)

EPSS

0.12316

KEV

Attività

molto basso

Settore

Homeoffice, Pharma, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0285
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0285
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0285/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!