What is the severity of CVE-2002-1056?

CVE-2002-1056 is considered a moderate severity vulnerability due to its potential to allow arbitrary script execution.

How do I fix CVE-2002-1056?

To mitigate CVE-2002-1056, you should disable the use of Microsoft Word as the email editor in Outlook or apply any available patches from Microsoft.

What impact does CVE-2002-1056 have on users?

CVE-2002-1056 allows attackers to execute arbitrary scripts on the user's machine through crafted email messages.

Is CVE-2002-1056 related to any versions of Microsoft Word?

Yes, CVE-2002-1056 also affects Microsoft Word 2000 and 2002 when used as the email editor in Outlook.

Vulnerability/
CVE-2002-1056

high

7.5

CWE

NVD-CWE-Other

16/5/2002

25/6/2002

8/8/2024

CVE-2002-1056

First published: Thu May 16 2002(Updated: )

Microsoft Outlook 2000 and 2002, when configured to use Microsoft Word as the email editor, does not block scripts that are used while editing email messages in HTML or Rich Text Format (RTF), which could allow remote attackers to execute arbitrary scripts via an email that the user forwards or replies to.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Microsoft Outlook	=2000
Microsoft Office Word	=2000
Microsoft Office Word	=2000-sr1a
Microsoft Office Word	=2002
Microsoft Outlook	=2002
Microsoft Office Word	=2000-sr1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2002-1056?
CVE-2002-1056 is considered a moderate severity vulnerability due to its potential to allow arbitrary script execution.
How do I fix CVE-2002-1056?
To mitigate CVE-2002-1056, you should disable the use of Microsoft Word as the email editor in Outlook or apply any available patches from Microsoft.
Which versions of Microsoft Outlook are affected by CVE-2002-1056?
CVE-2002-1056 affects Microsoft Outlook 2000 and 2002 when configured to use Word as the email editor.
What impact does CVE-2002-1056 have on users?
CVE-2002-1056 allows attackers to execute arbitrary scripts on the user's machine through crafted email messages.
Is CVE-2002-1056 related to any versions of Microsoft Word?
Yes, CVE-2002-1056 also affects Microsoft Word 2000 and 2002 when used as the email editor in Outlook.

agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/references
agent/weakness
agent/severity
agent/last-modified-date
agent/description
agent/author
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/microsoft
canonical/microsoft outlook
version/microsoft outlook/2000
canonical/microsoft office word
version/microsoft office word/2000
version/microsoft office word/2000-sr1a
version/microsoft office word/2002
version/microsoft outlook/2002
version/microsoft office word/2000-sr1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.