CVE-2000-0081

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
10/01/2000
Last modified:
03/04/2025

Description

Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute the code by using hexadecimal codes to specify the javascript: protocol, e.g. jAvascript.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:microsoft:hotmail:*:*:*:*:*:*:*:*