CVE-2004-0121

Microsoft Outlook 2002 - Command Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-0121. PoCs published by shaun2k2.

AI-analyzed exploit summary This exploit leverages a vulnerability in Microsoft Outlook's handling of mailto URIs to execute arbitrary JavaScript in the Local Zone. The PoC demonstrates how an attacker can inject a JavaScript URI via an img tag to trigger an alert, proving the vulnerability.

Description

Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter parameters of mailto: URLs when using them as arguments when calling OUTLOOK.EXE, which allows remote attackers to use script code in the Local Machine zone and execute arbitrary programs.

Exploits (1)

exploitdb WORKING POC VERIFIED
by shaun2k2 · htmlremotewindows
https://www.exploit-db.com/exploits/23796

This exploit leverages a vulnerability in Microsoft Outlook's handling of mailto URIs to execute arbitrary JavaScript in the Local Zone. The PoC demonstrates how an attacker can inject a JavaScript URI via an img tag to trigger an alert, proving the vulnerability.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Outlook (versions affected by CVE-2004-0121)
No auth needed
Prerequisites: Victim must open a malicious web page or HTML email · Outlook must be configured as the default mail client
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Broken Link, Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA04-070A.html
Patch, Vendor Advisory vendor-advisory x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-009
Mitigation, Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/305206
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15414
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15429
Broken Link third-party-advisory government-resource x_refsource_ciac
http://www.ciac.org/ciac/bulletins/o-096.shtml
Broken Link, Exploit, Patch, Third Party Advisory, VDB Entry, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9827
Broken Link, Patch, Vendor Advisory third-party-advisory x_refsource_idefense
http://www.idefense.com/application/poi/display?id=79&type=vulnerabilities
Third Party Advisory mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107893704602842&w=2

Scores

EPSS 0.4768
EPSS Percentile 98.7%

Details

CWE
CWE-88
Status published
Products (2)
microsoft/office xp sp2
microsoft/outlook 2002 sp2
Published Apr 15, 2004
Tracked Since Feb 18, 2026