Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2004-0380
HistoryApr 06, 2004 - 4:00 a.m.

CVE-2004-0380

2004-04-0604:00:00
mitre
www.cve.org
2

AI Score

7.1

Confidence

Low

EPSS

0.968

Percentile

99.7%

JSON

The MHTML protocol handler in Microsoft Outlook Express 5.5 SP2 through Outlook Express 6 SP1 allows remote attackers to bypass domain restrictions and execute arbitrary code, as demonstrated on Internet Explorer using script in a compiled help (CHM) file that references the InfoTech Storage (ITS) protocol handlers such as (1) ms-its, (2) ms-itss, (3) its, or (4) mk:@MSITStore, aka the “MHTML URL Processing Vulnerability.”

Related

nessus 1
nvd 1
cert 1
cve 1
securityvulns 3
nessus
nessus
MS04-013: Cumulative Update for Outlook Express (837009)
2004-04-13 00:00:00
nvd
nvd
CVE-2004-0380
2004-05-04 04:00:00
cert
cert
Outlook Express MHTML protocol handler does not properly validate source of alternate content
2004-04-05 00:00:00
cve
cve
CVE-2004-0380
2004-05-04 04:00:00
securityvulns
securityvulns
US-CERT Technical Cyber Security Alert TA04-099A -- Vulnerability in Internet Explorer ITS Protocol Handler
2004-04-09 00:00:00
Microsoft Security Bulletin MS04-013
2004-04-14 00:00:00
US-CERT Technical Cyber Security Alert TA04-104A -- Multiple Vulnerabilities in Microsoft Products
2004-04-14 00:00:00

AI Score

7.1

Confidence

Low

EPSS

0.968

Percentile

99.7%

JSON
Related for CVELIST:CVE-2004-0380
nessus1nvd1cert1cve1securityvulns3