CVE-2000-0216 : Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery R

Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with responses by forging a Read Receipt request that is redirected to a large distribution list.

Published 2000-02-29 05:00:00

Updated 2008-09-10 19:03:20

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2000-0216

Probability of exploitation activity in the next 30 days: 0.67%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 77 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2000-0216

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2000-0216

http://archives.neohapsis.com/archives/ntbugtraq/2000-q1/0176.html

Vendor Advisory

Products affected by CVE-2000-0216

Microsoft » Outlook
cpe:2.3:a:microsoft:outlook:*:*:*:*:*:*:*:*
Matching versions
Microsoft » Exchange Server
cpe:2.3:a:microsoft:exchange_server:*:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Messaging
cpe:2.3:a:microsoft:windows_messaging:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2000-0216

Exploit prediction scoring system (EPSS) score for CVE-2000-0216

CVSS scores for CVE-2000-0216

References for CVE-2000-0216

Products affected by CVE-2000-0216