CVE-2001-0340

An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and Internet Explorer allows attackers to execute malicious script code against a user's mailbox via a message attachment that contains HTML code, which is executed automatically.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:exchange_server:5.5:-:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2000:-:*:*:*:*:*:*

History

No history.

Information

Published : 2001-07-21 04:00

Updated : 2024-02-04 16:31


NVD link : CVE-2001-0340

Mitre link : CVE-2001-0340

CVE.ORG link : CVE-2001-0340


JSON object : View

Products Affected

microsoft

  • exchange_server
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type