CVE-2022-23280 – Microsoft Outlook for Mac Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2022-23280
Microsoft Outlook for Mac Security Feature Bypass Vulnerability Una Vulnerabilidad de la función de seguridad de Microsoft Outlook para Mac • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23280 •
CVE-2021-31949 – Microsoft Outlook Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-31949
Microsoft Outlook Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Outlook • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31949 •
CVE-2021-31941 – Microsoft Office Graphics Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-31941
Microsoft Office Graphics Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Office Graphics. Este ID de CVE es diferente de CVE-2021-31940 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31941 https://www.zerodayinitiative.com/advisories/ZDI-21-669 •
CVE-2021-28452 – Microsoft Outlook Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2021-28452
Microsoft Outlook Memory Corruption Vulnerability Una vulnerabilidad de Corrupción en la Memoria de Microsoft Outlook • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28452 • CWE-787: Out-of-bounds Write •
CVE-2020-17119 – Microsoft Outlook Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-17119
Microsoft Outlook Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Outlook This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Outlook. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of MSG files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17119 •