Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2004-0503 | First vendor Publication | 2004-08-18 |
Vendor | Cve | Last vendor Modification | 2017-07-11 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N) | |||
---|---|---|---|
Cvss Base Score | 5 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Microsoft Outlook 2003 allows remote attackers to bypass the default zone restrictions and execute script within media files via a Rich Text Format (RTF) message containing an OLE object for the Windows Media Player, which bypasses Media Player's setting to disallow scripting and may lead to unprompted installation of an executable when exploited in conjunction with predictable-file-location exposures such as CVE-2004-0502. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0503 |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
6217 | Microsoft Outlook RTF Embedded Object Security Bypass Microsoft Outlook 2003 contains a flaw that may allow a remote attacker to bypass security setting. By embedding an OLE object with reference to a Windows media file in a RTF message, a remote attacker could be able to start a download sequence of arbitrary files, which normally causes Internet Explorer to prompt whether to download the file. It is possible that the flaw may allow the launch of arbitrary files without any warning, resulting in a loss of integrity. |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:02:20 |
|
2021-04-22 01:02:29 |
|
2020-05-23 00:15:48 |
|
2017-07-11 12:01:27 |
|
2016-10-18 12:01:20 |
|
2016-06-28 15:05:50 |
|
2016-04-26 12:50:31 |
|
2013-05-11 11:41:56 |
|