Back to search
CVE-2002-0285
Published: May 3, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
Outlook Express 5.5 and 6.0 on Windows treats a carriage return ("CR") in a message header as if it were a valid carriage return/line feed combination (CR/LF), which could allow remote attackers to bypass virus protection and or other filtering mechanisms via a mail message with headers that only contain the CR, which causes Outlook to create separate headers.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
outlook-express-return-bypass(8198)
vdb-entry
x_refsource_XF
4092
vdb-entry
x_refsource_BID
20020212 Outlook will see non-existing attachments
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now