CVE-2003-0007

medium

Microsoft

CVSS v3 Base Score

5.0

AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS Score

5.0%

Exploitation probability in 30 days

Top 10% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

Integrity

None

Availability

None

Published: February 7, 2003 (8497 days ago)

Last Modified: April 16, 2026

Vendor: Microsoft

Source: NVD

Description

Microsoft Outlook 2002 does not properly handle requests to encrypt email messages with V1 Exchange Server Security certificates, which causes Outlook to send the email in plaintext, aka "Flaw in how Outlook 2002 handles V1 Exchange Server Security Certificates could lead to Information Disclosure."

CWE

NVD-CWE-Other

Affected Products

microsoft outlook

References

🔗 www.securityfocus.com 🔗 docs.microsoft.com 🔗 exchange.xforce.ibmcloud.com 🔗 www.securityfocus.com 🔗 docs.microsoft.com

CVE-2003-0007

Vulnerability Report

Description

CWE

Affected Products

References