ID CVE-2018-8244
Summary An elevation of privilege vulnerability exists when Microsoft Outlook does not validate attachment headers properly, aka "Microsoft Outlook Elevation of Privilege Vulnerability." This affects Microsoft Office, Microsoft Outlook.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
msbulletin via4
bulletin_SOURCE_FILE https://portal.msrc.microsoft.com/api/security-guidance/en-us/
cves_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8244
impact Elevation of Privilege
knowledgebase_SOURCE_FILE
knowledgebase_id
name Microsoft Outlook 2013 Service Pack 1 (64-bit editions)
publishedDate 2018-06-12T07:00:00
severity Important
nessus via4
NASL family Windows : Microsoft Bulletins
NASL id SMB_NT_MS18_JUN_OUTLOOK.NASL
description The Microsoft Outlook application installed on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - An elevation of privilege vulnerability exists when Microsoft Outlook does not validate attachment headers properly. An attacker who successfully exploited the vulnerability could send an email with hidden attachments that would be opened or executed once a victim clicks a link within the email. Note that this does not bypass attachment filters, so blocked attachments will still be excluded. (CVE-2018-8244)
last seen 2018-06-13
modified 2018-06-12
plugin id 110499
published 2018-06-12
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=110499
title Security Updates for Outlook (June 2018)
Last major update 14-06-2018 - 08:29
Published 14-06-2018 - 08:29
Last modified 15-06-2018 - 21:29
Back to Top