CVE: CVE-2002-1056

Descrizione: Microsoft Outlook 2000 and 2002, when configured to use Microsoft Word as the email editor, does not block scripts that are used while editing email messages in HTML or Rich Text Format (RTF), which could allow remote attackers to execute arbitrary scripts via an email that the user forwards or replies to.

Vettore di attacco

Riferimenti esterni

• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A429
• http://www.securityfocus.com/bid/4397
• https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-021
• http://marc.info/?l=bugtraq&m=101760380418890&w=2
• http://online.securityfocus.com/archive/1/265621
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A205
• http://www.iss.net/security_center/static/8708.php

Prodotti interessati

• n/a – n/a

Relazioni con altri prodotti

Nessun prodotto trovato per il CVE: cve-2002-1056

Ulteriori risorse disponibili

• Vulnerabilità scoperte nello stesso anno (2002)