Published: 14/06/2018 Updated: 06/08/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

An elevation of privilege vulnerability exists when Microsoft Outlook does not validate attachment headers properly, aka "Microsoft Outlook Elevation of Privilege Vulnerability." This affects Microsoft Office, Microsoft Outlook.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft outlook rt 2013
microsoft outlook 2016
microsoft office 2016
microsoft outlook 2010
microsoft outlook 2013

June 2018, and Windows Server can be pwned with a DNS request

The Register • Shaun Nichols in San Francisco • 12 Jun 2018

Cortana also a little too eager to carry out commands Have to use SMB 1.0? Windows 10 April 2018 Update says NO

Microsoft has released its monthly security update, addressing a total of 51 CVE-listed security vulnerabilities. The June edition of Patch Tuesday includes 11 fixes for critical vulnerabilities in Windows, including Microsoft's solution for the recently-disclosed Spectre Variant 4 chip design flaw. Among the most serious bugs addressed this month is CVE-2018-8225, a remote code execution vulnerability present in the Windows DNSAPI. Microsoft says that the flaw would allow an attacker to take ov...

CVE-2018-8244

Vulnerability Summary

Recent Articles

References

Vulmon Search

About

Products

Connect