CVE-2001-0340

An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and Internet Explorer allows attackers to execute malicious script code against a user’s mailbox via a message attachment that contains HTML code, which is executed automatically.

Date published : 2001-09-18

http://www.ciac.org/ciac/bulletins/l-091.shtml

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-030