CVSS: 9.3EPSS: 29%CPEs: 6EXPL: 0CVE-2018-0791
https://notcve.org/view.php?id=CVE-2018-0791
10 Jan 2018 — Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, and Microsoft Outlook 2016 allow a remote code execution vulnerability due to the way email messages are parsed, aka "Microsoft Outlook Remote Code Execution Vulnerability". ... Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013 y Microsoft Outlook 2016 permiten una vulnerabilidad de ejecución remota de código debido a la forma en la que se ... • http://www.securityfocus.com/bid/102383 •
CVSS: 9.3EPSS: 29%CPEs: 9EXPL: 0CVE-2018-0793 – Microsoft Security Bulletin CVE Revision Increment for January, 2018
https://notcve.org/view.php?id=CVE-2018-0793
10 Jan 2018 — Microsoft Outlook 2007, Microsoft Outlook 2010 and Microsoft Outlook 2013 allow a remote code execution vulnerability due to the way email messages are parsed, aka "Microsoft Outlook Remote Code Execution Vulnerability". ... Microsoft Outlook 2007, Microsoft Outlook 2010 y Microsoft Outlook 2013 permiten una vulnerabilidad de ejecución remota de código debido a la forma en la que se analizan los mensajes de email. Esto también se conoce como "Mi... • http://www.securityfocus.com/bid/102375 •
CVSS: 9.3EPSS: 14%CPEs: 4EXPL: 0CVE-2017-8663 – Microsoft Security Bulletin CVE Update for July, 2017
https://notcve.org/view.php?id=CVE-2017-8663
27 Jul 2017 — Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a remote code execution vulnerability due to the way Microsoft Outlook parses specially crafted email messages, aka "Microsoft Office Outlook Memory Corruption Vulnerability" Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1 y Outlook 2016, tal y... • http://www.securityfocus.com/bid/100004 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 33%CPEs: 4EXPL: 0CVE-2017-8506
https://notcve.org/view.php?id=CVE-2017-8506
15 Jun 2017 — A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". ... Se presenta una vulnerabilidad de ejecución de código remota en Microsoft Office cuando el programa no puede manejar apropiadamente los objetos en la memoria, también se conoce como "Office Remote Code Execution Vulnerability". • http://www.securityfocus.com/bid/98811 •
CVSS: 9.3EPSS: 22%CPEs: 5EXPL: 0CVE-2017-8507
https://notcve.org/view.php?id=CVE-2017-8507
15 Jun 2017 — A remote code execution vulnerability exists in the way Microsoft Office software parses specially crafted email messages, aka "Microsoft Office Memory Corruption Vulnerability". • http://www.securityfocus.com/bid/98827 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 10%CPEs: 4EXPL: 1CVE-2017-0106
https://notcve.org/view.php?id=CVE-2017-0106
12 Apr 2017 — Microsoft Excel 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1, and Microsoft Outlook 2016 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft Excel 2007 SP3, Microsoft Outlook 2010 SP1, Microsoft Outlook 2013 SP1 y Microsoft Outlook 2016 permiten a atacantes remotos ejecutar código arbitrario o provocar una... • https://github.com/ryhanson/CVE-2017-0106 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 25%CPEs: 4EXPL: 0CVE-2016-3278
https://notcve.org/view.php?id=CVE-2016-3278
13 Jul 2016 — Microsoft Outlook 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft Outlook 2010 SP2, 2013 SP1, 2013 RT SP1 y 2016 permite a atacantes remotos ejecutar código arbitrario a través de un documento de Office manipulado, también conocida como "Microsoft Office Memory Corruption Vulnerability". • http://www.securityfocus.com/bid/91574 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 32%CPEs: 7EXPL: 0CVE-2015-6172
https://notcve.org/view.php?id=CVE-2015-6172
09 Dec 2015 — Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2016, Word 2013 RT SP1, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted email message processed by Outlook, aka "Microsoft Office RCE Vulnerability." Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2016, Word 2013 RT SP1 y Office Compatibility Pack SP3 permite a atacantes remotos ejecutar código arbitrario a través de un mensaje de co... • http://www.securitytracker.com/id/1034325 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 93%CPEs: 12EXPL: 1CVE-2015-1641 – Microsoft Office Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2015-1641
14 Apr 2015 — Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, and Office Web Apps Server 2010 SP2 and 2013 SP1 allow remote attackers to execute arbitrary code via a crafted RTF document, aka "Microsoft Office Memory Corruption Vulnerability." ... Successful exploitation allows for remote code execution in the context of the current user. • https://github.com/Cyberclues/rtf_exploit_extractor • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 32%CPEs: 5EXPL: 1CVE-2013-3870 – Microsoft CryptoAPI / Outlook 2007-2013 Design Bug
https://notcve.org/view.php?id=CVE-2013-3870
11 Sep 2013 — Double free vulnerability in Microsoft Outlook 2007 SP3 and 2010 SP1 and SP2 allows remote attackers to execute arbitrary code by including many nested S/MIME certificates in an e-mail message, aka "Message Certificate Vulnerability." Vulnerabilidad de doble liberación en Microsoft Outlook 2007 (SP3) y 2010 (SP1 y SP2) permite a atacantes remotos ejecutar código a discrección incluyendo varios certificados S/MIME anidados en un mensaje de correo electrónico, tambien conocido como "Vulne... • http://blogs.technet.com/b/srd/archive/2013/09/10/ms13-068-a-difficult-to-exploit-double-free-in-outlook.aspx • CWE-399: Resource Management Errors •