cnvd - cnvd-2018-23150

cnvd-2018-23150

Vulnerability from cnvd

Title: Microsoft Outlook远程代码执行漏洞（CNVD-2018-23150）

Description:

微软Outlook是微软办公软件套装的组件之一，它对Windows自带的Outlook express的功能进行了扩充。Outlook的功能很多，可以用它来收发电子邮件、管理联系人信息、记日记、安排日程、分配任务。

Microsoft Outlook存在远程代码执行漏洞。该漏洞源于该软件解析特别修改的规则导出文件的方式存在问题。攻击者可利用该漏洞控制受影响的系统。

Severity: 高

Patch Name: Microsoft Outlook远程代码执行漏洞（CNVD-2018-23150）的补丁

Patch Description:

Microsoft Outlook存在远程代码执行漏洞。该漏洞源于该软件解析特别修改的规则导出文件的方式存在问题。攻击者可利用该漏洞控制受影响的系统。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布漏洞修复程序，请及时关注更新： https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582

Reference: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582

Impacted products

Name
Microsoft Outlook

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "105825"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-8582"
    }
  },
  "description": "\u5fae\u8f6fOutlook\u662f\u5fae\u8f6f\u529e\u516c\u8f6f\u4ef6\u5957\u88c5\u7684\u7ec4\u4ef6\u4e4b\u4e00\uff0c\u5b83\u5bf9Windows\u81ea\u5e26\u7684Outlook express\u7684\u529f\u80fd\u8fdb\u884c\u4e86\u6269\u5145\u3002Outlook\u7684\u529f\u80fd\u5f88\u591a\uff0c\u53ef\u4ee5\u7528\u5b83\u6765\u6536\u53d1\u7535\u5b50\u90ae\u4ef6\u3001\u7ba1\u7406\u8054\u7cfb\u4eba\u4fe1\u606f\u3001\u8bb0\u65e5\u8bb0\u3001\u5b89\u6392\u65e5\u7a0b\u3001\u5206\u914d\u4efb\u52a1\u3002\n\nMicrosoft Outlook\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u8be5\u8f6f\u4ef6\u89e3\u6790\u7279\u522b\u4fee\u6539\u7684\u89c4\u5219\u5bfc\u51fa\u6587\u4ef6\u7684\u65b9\u5f0f\u5b58\u5728\u95ee\u9898\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63a7\u5236\u53d7\u5f71\u54cd\u7684\u7cfb\u7edf\u3002",
  "discovererName": "Yonghui Han of Fortinet\u00e2??s FortiGuard Labs",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-23150",
  "openTime": "2018-11-15",
  "patchDescription": "\u5fae\u8f6fOutlook\u662f\u5fae\u8f6f\u529e\u516c\u8f6f\u4ef6\u5957\u88c5\u7684\u7ec4\u4ef6\u4e4b\u4e00\uff0c\u5b83\u5bf9Windows\u81ea\u5e26\u7684Outlook express\u7684\u529f\u80fd\u8fdb\u884c\u4e86\u6269\u5145\u3002Outlook\u7684\u529f\u80fd\u5f88\u591a\uff0c\u53ef\u4ee5\u7528\u5b83\u6765\u6536\u53d1\u7535\u5b50\u90ae\u4ef6\u3001\u7ba1\u7406\u8054\u7cfb\u4eba\u4fe1\u606f\u3001\u8bb0\u65e5\u8bb0\u3001\u5b89\u6392\u65e5\u7a0b\u3001\u5206\u914d\u4efb\u52a1\u3002\r\n\r\nMicrosoft Outlook\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u8be5\u8f6f\u4ef6\u89e3\u6790\u7279\u522b\u4fee\u6539\u7684\u89c4\u5219\u5bfc\u51fa\u6587\u4ef6\u7684\u65b9\u5f0f\u5b58\u5728\u95ee\u9898\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63a7\u5236\u53d7\u5f71\u54cd\u7684\u7cfb\u7edf\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Microsoft Outlook\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2018-23150\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Microsoft Outlook"
  },
  "referenceLink": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582",
  "serverity": "\u9ad8",
  "submitTime": "2018-11-14",
  "title": "Microsoft Outlook\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2018-23150\uff09"
}

CVE-2018-8582 (GCVE-0-2018-8582)

Vulnerability from cvelistv5

Published

2018-11-14 01:00

Modified

2024-08-05 07:02

Severity ?

CWE

Remote Code Execution

Summary

A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522, CVE-2018-8524, CVE-2018-8576.

References

▼	URL	Tags
	http://www.securitytracker.com/id/1042110	vdb-entry, x_refsource_SECTRACK
	http://www.securityfocus.com/bid/105825	vdb-entry, x_refsource_BID
	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

▼

Microsoft

Microsoft Office

Version: 2019 for 32-bit editions
Version: 2019 for 64-bit editions

	Microsoft	Office	Version: 365 ProPlus for 32-bit Systems Version: 365 ProPlus for 64-bit Systems
	Microsoft	Microsoft Outlook	Version: 2010 Service Pack 2 (32-bit editions) Version: 2010 Service Pack 2 (64-bit editions) Version: 2013 RT Service Pack 1 Version: 2013 Service Pack 1 (32-bit editions) Version: 2013 Service Pack 1 (64-bit editions) Version: 2016 (32-bit edition) Version: 2016 (64-bit edition)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T07:02:25.885Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1042110",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1042110"
          },
          {
            "name": "105825",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/105825"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Microsoft Office",
          "vendor": "Microsoft",
          "versions": [
            {
              "status": "affected",
              "version": "2019 for 32-bit editions"
            },
            {
              "status": "affected",
              "version": "2019 for 64-bit editions"
            }
          ]
        },
        {
          "product": "Office",
          "vendor": "Microsoft",
          "versions": [
            {
              "status": "affected",
              "version": "365 ProPlus for 32-bit Systems"
            },
            {
              "status": "affected",
              "version": "365 ProPlus for 64-bit Systems"
            }
          ]
        },
        {
          "product": "Microsoft Outlook",
          "vendor": "Microsoft",
          "versions": [
            {
              "status": "affected",
              "version": "2010 Service Pack 2 (32-bit editions)"
            },
            {
              "status": "affected",
              "version": "2010 Service Pack 2 (64-bit editions)"
            },
            {
              "status": "affected",
              "version": "2013 RT Service Pack 1"
            },
            {
              "status": "affected",
              "version": "2013 Service Pack 1 (32-bit editions)"
            },
            {
              "status": "affected",
              "version": "2013 Service Pack 1 (64-bit editions)"
            },
            {
              "status": "affected",
              "version": "2016 (32-bit edition)"
            },
            {
              "status": "affected",
              "version": "2016 (64-bit edition)"
            }
          ]
        }
      ],
      "datePublic": "2018-11-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka \"Microsoft Outlook Remote Code Execution Vulnerability.\" This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522, CVE-2018-8524, CVE-2018-8576."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Remote Code Execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-11-14T10:57:02",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": "1042110",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1042110"
        },
        {
          "name": "105825",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/105825"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2018-8582",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Microsoft Office",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "2019 for 32-bit editions"
                          },
                          {
                            "version_value": "2019 for 64-bit editions"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Office",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "365 ProPlus for 32-bit Systems"
                          },
                          {
                            "version_value": "365 ProPlus for 64-bit Systems"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Microsoft Outlook",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "2010 Service Pack 2 (32-bit editions)"
                          },
                          {
                            "version_value": "2010 Service Pack 2 (64-bit editions)"
                          },
                          {
                            "version_value": "2013 RT Service Pack 1"
                          },
                          {
                            "version_value": "2013 Service Pack 1 (32-bit editions)"
                          },
                          {
                            "version_value": "2013 Service Pack 1 (64-bit editions)"
                          },
                          {
                            "version_value": "2016 (32-bit edition)"
                          },
                          {
                            "version_value": "2016 (64-bit edition)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Microsoft"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka \"Microsoft Outlook Remote Code Execution Vulnerability.\" This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522, CVE-2018-8524, CVE-2018-8576."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Remote Code Execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1042110",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1042110"
            },
            {
              "name": "105825",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/105825"
            },
            {
              "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582",
              "refsource": "CONFIRM",
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2018-8582",
    "datePublished": "2018-11-14T01:00:00",
    "dateReserved": "2018-03-14T00:00:00",
    "dateUpdated": "2024-08-05T07:02:25.885Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted