CVE-2004-0121

Publication date

2004-09-01 04:00:00

Family

mitre

State

PUBLISHED

Description

Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter parameters of mailto: URLs when using them as arguments when calling OUTLOOK.EXE, which allows remote attackers to use script code in the Local Machine zone and execute arbitrary programs.