CVE-2000-0036

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Dec 22, 1999

Updated: Nov 20, 2024

Summary

CVE-2000-0036, also known as the "HTML Mail Attachment" vulnerability, affects Outlook Express 5 for Macintosh. This issue allows for the automatic downloading of email attachments without user consent when opening HTML emails. This vulnerability poses a significant risk as users may unintentionally download malware or other malicious content, compromising their systems. Attackers can exploit this weakness by crafting carefully crafted HTML emails with hidden attachments, potentially leading to serious security consequences.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Internet Explorer
Microsoft Outlook Express

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/LFRDem
https://www.cve.org/CVERecord?id=CVE-2000-0036
https://nvd.nist.gov/vuln/detail/CVE-2000-0036

Back to Vulnerability Database