Description
Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a malicious HTML e-mail message or web page.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Georgi Guninski · textremotewindows
https://www.exploit-db.com/exploits/21003
exploitdb
WORKING POC
VERIFIED
by Georgi Guninski · textremotewindows
https://www.exploit-db.com/exploits/21004
References (7)
Core 7
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=99496431214078&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3025
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-038
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6831
Third Party Advisory, US Government Resource third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/l-113.shtml
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/131569
Various Sources mailing-list
x_refsource_ntbugtraq
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0107&L=ntbugtraq&F=P&S=&P=862
Scores
EPSS
0.6306
EPSS Percentile
98.4%
Details
Status
published
Products (1)
microsoft/outlook
< 2002
Published
Aug 14, 2001
Tracked Since
Feb 18, 2026