CVE-2000-0085

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Jan 4, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0085 is a vulnerability affecting Hotmail's email filtering system. The issue lies in Hotmail's failure to adequately filter JavaScript code from users' mailboxes, enabling remote attackers to execute malicious scripts through the IMG tag, specifically the LOWSRC or DYNRC parameters. This flaw can lead to serious security risks, including unauthorized access or data theft. Attackers can exploit this vulnerability by sending a malicious email containing the crafted JavaScript code. The successful execution of this code can result in significant harm to the user.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlVga
https://www.cve.org/CVERecord?id=CVE-2000-0085
https://nvd.nist.gov/vuln/detail/CVE-2000-0085

Back to Vulnerability Database

CVE-2000-0085

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations