This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:microsoft:outlook:2003
Detail
VendorMicrosoftFirst view 2004-08-06
ProductOutlookLast view 2008-07-07
Version2003TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:microsoft:outlook

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.52008-07-07CVE-2008-3068NetworkLowNone Requ...
9.32007-02-02CVE-2007-0671NetworkMediumNone Requ...
9.32007-01-09CVE-2007-0034NetworkMediumNone Requ...
9.32007-01-09CVE-2007-0033NetworkMediumNone Requ...
4.32006-12-31CVE-2006-1305NetworkMediumNone Requ...
Hide | Show 11 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32006-10-10CVE-2006-3877NetworkMediumNone Requ...
9.32006-09-19CVE-2006-4868NetworkMediumNone Requ...
7.52006-01-10CVE-2006-0002NetworkLowNone Requ...
52005-05-02CVE-2005-1052NetworkLowNone Requ...
52004-12-31CVE-2004-2482NetworkLowNone Requ...
52004-11-23CVE-2004-0284NetworkLowNone Requ...
9.32004-09-28CVE-2004-0200NetworkMediumNone Requ...
52004-08-18CVE-2004-0503NetworkLowNone Requ...
52004-08-18CVE-2004-0502NetworkLowNone Requ...
52004-08-18CVE-2004-0501NetworkLowNone Requ...
52004-08-06CVE-2004-0526NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
50% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
25% (1)CWE-399Resource Management Errors
25% (1)CWE-94Failure to Control Generation of Code ('Code Injection')

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:4307GDI+ JPEG Parsing Engine Buffer Overflow (VS.NET 2002)
oval:org.mitre.oval:def:4216GDI+ JPEG Parsing Engine Buffer Overflow (IE6)
oval:org.mitre.oval:def:4003GDI+ JPEG Parsing Engine Buffer Overflow (Windows XP)
oval:org.mitre.oval:def:3881GDI+ JPEG Parsing Engine Buffer Overflow (Office XP,SP2)
oval:org.mitre.oval:def:3810GDI+ JPEG Parsing Engine Buffer Overflow (Project 2003)
Hide | Show 19 More...
idName
oval:org.mitre.oval:def:3320GDI+ JPEG Parsing Engine Buffer Overflow Microsoft Office Visio Pro 2003
oval:org.mitre.oval:def:3082GDI+ JPEG Parsing Engine Buffer Overflow (Visio Pro 2002)
oval:org.mitre.oval:def:3038GDI+ JPEG Parsing Engine Buffer Overflow (Project 2002,SP1)
oval:org.mitre.oval:def:2706GDI+ JPEG Parsing Engine Buffer Overflow (Office 2003)
oval:org.mitre.oval:def:1721GDI+ JPEG Parsing Engine Buffer Overflow (VS.NET 2003)
oval:org.mitre.oval:def:1105GDI+ JPEG Parsing Engine Buffer Overflow (Server 2003)
oval:org.mitre.oval:def:624Exchange Server 5.5 TNEF Decoding Vulnerability
oval:org.mitre.oval:def:1485Outlook 2000 TNEF Decoding Vulnerability
oval:org.mitre.oval:def:1456Outlook 2003 TNEF Decoding Vulnerability
oval:org.mitre.oval:def:1316Exchange Server 5.0 TNEF Decoding Vulnerability
oval:org.mitre.oval:def:1165Outlook 2002 TNEF Decoding Vulnerability
oval:org.mitre.oval:def:1082Exchange 2000 Server TNEF Decoding Vulnerability
oval:org.mitre.oval:def:122Microsoft Outlook Denial of Service Vulnerability
oval:org.mitre.oval:def:568PowerPoint Malformed Record Memory Corruption Vulnerability
oval:org.mitre.oval:def:220Microsoft PowerPoint Malformed Record Memory Corruption Vulnerability
oval:org.mitre.oval:def:100VML Buffer Overrun Vulnerability
oval:org.mitre.oval:def:516Microsoft Outlook VEVENT Vulnerability
oval:org.mitre.oval:def:153Microsoft Outlook Advanced Find Vulnerability
oval:org.mitre.oval:def:301Excel Malformed Record Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
47004Microsoft Crypto API S/MIME X.509 Certificate CRL Check Remote Information Di...
31901Microsoft Office Unspecified String Handling Arbitrary Code Execution
31254Microsoft Outlook Advanced Find .oss File Handling Remote Code Execution
31253Microsoft Outlook E-mail Header Processing Unspecified DoS
31252Microsoft Outlook VEVENT Record Handling Remote Code Execution
Hide | Show 12 More...
idDescription
29448Microsoft PowerPoint Crafted File Unspecified Code Execution
28946Microsoft IE Vector Markup Language (VML) Arbitrary Code Execution
22305Microsoft Outlook/Exchange TNEF Decoding Arbitrary Code Execution
15480Microsoft Outlook From Header Comma Parsing Failure
9951Microsoft Multiple Products GDIPlus.dll JPEG Processing Overflow
7769Microsoft Outlook With Word Editor Object Tag Code Execution
6931Microsoft IE/Outlook Double Null Character DoS
6538Microsoft IE/Outlook ImageMap URL Spoofing
6217Microsoft Outlook RTF Embedded Object Security Bypass
6079Microsoft Outlook Remote XML Loading
6007Microsoft IE/Outlook IMG/HREF Tag Code Execution
5998Microsoft Outlook Predictable File Caching

Metasploit Exploits

idDescription
2006-09-19MS06-055 Microsoft Internet Explorer VML Fill Method Code Execution

Information Assurance Vulnerability Management (IAVM)

idDescription
2006-A-0003Microsoft Outlook and Exchange TNEF Decoding Vulnerability
Severity : Category I - VMSKEY : V0011719

Snort® IPS/IDS

DateDescription
2014-01-10Microsoft Office Outlook Saved Search download attempt
RuleID : 9847 - Type : FILE-OFFICE - Revision : 14
2014-01-10Microsoft Office Outlook VEVENT overflow attempt
RuleID : 9841 - Type : SERVER-MAIL - Revision : 14
2014-01-10Microsoft Windows Vector Markup Language fill method overflow attempt
RuleID : 8416 - Type : OS-WINDOWS - Revision : 16
2014-08-27Microsoft Multiple Products JPEG parser heap overflow attempt
RuleID : 31719-community - Type : FILE-IMAGE - Revision : 1
2014-11-16Microsoft Multiple Products JPEG parser heap overflow attempt
RuleID : 31719 - Type : FILE-IMAGE - Revision : 1
Hide | Show 11 More...
DateDescription
2014-01-10JPEG parser multipacket heap overflow attempt
RuleID : 27569 - Type : FILE-IMAGE - Revision : 2
2014-01-10JPEG parser multipacket heap overflow attempt
RuleID : 2707-community - Type : FILE-IMAGE - Revision : 13
2014-01-10JPEG parser multipacket heap overflow attempt
RuleID : 2707 - Type : FILE-IMAGE - Revision : 13
2014-01-10Microsoft Multiple Products JPEG parser heap overflow attempt
RuleID : 2705-community - Type : FILE-IMAGE - Revision : 18
2014-01-10Microsoft Multiple Products JPEG parser heap overflow attempt
RuleID : 2705 - Type : FILE-IMAGE - Revision : 18
2014-01-10Microsoft Office Outlook VEVENT overflow attempt
RuleID : 21163 - Type : FILE-OFFICE - Revision : 7
2014-01-10Microsoft Internet Explorer VML buffer overflow attempt
RuleID : 19871 - Type : BROWSER-IE - Revision : 6
2014-01-10Microsoft Vector Markup Language fill method overflow attempt
RuleID : 18309 - Type : OS-WINDOWS - Revision : 9
2014-01-10Microsoft Office Drawing Record msofbtOPT Code Execution attempt
RuleID : 17579 - Type : FILE-OFFICE - Revision : 12
2014-01-10Microsoft Windows Exchange and Outlook TNEF Decoding Integer Overflow attempt
RuleID : 17481 - Type : SERVER-MAIL - Revision : 10
2014-01-10Micrsoft Office Outlook VEVENT non-TZID overflow attempt
RuleID : 10012 - Type : SMTP - Revision : 8

Nessus® Vulnerability Scanner

idDescription
2007-02-13Name : Arbitrary code can be executed on the remote host through Microsoft Office.
File : smb_nt_ms07-015.nasl - Type : ACT_GATHER_INFO
2007-02-13Name : Arbitrary code can be executed on the remote host through Microsoft Office.
File : macosx_ms_office_feb2006.nasl - Type : ACT_GATHER_INFO
2007-01-09Name : Arbitrary code can be executed on the remote host through the email client.
File : smb_nt_ms07-003.nasl - Type : ACT_GATHER_INFO
2006-10-11Name : Arbitrary code can be executed on the remote host through Microsoft Office.
File : macosx_ms_office_oct2006.nasl - Type : ACT_GATHER_INFO
2006-10-10Name : Arbitrary code can be executed on the remote host through Microsoft PowerPoint.
File : smb_nt_ms06-058.nasl - Type : ACT_GATHER_INFO
Hide | Show 5 More...
idDescription
2006-09-26Name : Arbitrary code can be executed on the remote host through the email client or...
File : smb_nt_ms06-055.nasl - Type : ACT_GATHER_INFO
2006-01-10Name : Arbitrary code can be executed on the remote host through the email client or...
File : smb_nt_ms06-003.nasl - Type : ACT_GATHER_INFO
2004-09-28Name : The remote host may have been compromised
File : radmin_port_10002.nasl - Type : ACT_GATHER_INFO
2004-09-24Name : It is possible to log into the remote host.
File : smb_login_as_x.nasl - Type : ACT_GATHER_INFO
2004-09-14Name : Arbitrary code can be executed on the remote host.
File : smb_nt_ms04-028.nasl - Type : ACT_GATHER_INFO