← CVECheck
HomeVulnerabilities

CVE-2004-0501 — MEDIUM severity vulnerability (Outlook 2003 allows remote attackers to bypass intended acce)

Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow remote attackers to know when a message has been

CVE IDCVE-2004-0501
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2004-08-18
Last modified2026-04-16
DescriptionOutlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) entity whose src parameter points to the remote site, which could allow remote attackers to know when a message has been read, verify valid e-mail addresses, and possibly leak other information.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →