CVSS: 10.0EPSS: 10%CPEs: 9EXPL: 2CVE-2023-33131 – Microsoft Outlook Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-33131
13 Jun 2023 — Microsoft Outlook Remote Code Execution Vulnerability Microsoft Outlook suffers from a remote code execution via a maliciously crafted word file. • https://packetstorm.news/files/id/173361 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 1%CPEs: 26EXPL: 0CVE-2020-16949 – Microsoft Outlook Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2020-16949
16 Oct 2020 —
A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system.
Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Outlook server.
The security update addresses the vulnerability by correcting how Microsoft Outlook handles objects in memory.
Se presenta una vul... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16949 • CWE-401: Missing Release of Memory after Effective Lifetime •CVSS: 9.3EPSS: 20%CPEs: 6EXPL: 0CVE-2018-8522
https://notcve.org/view.php?id=CVE-2018-8522
14 Nov 2018 — A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8524, CVE-2018-8576, CVE-2018-8582. Existe una vulnerabilidad de ejecución remota de código en el software de Microsoft Outlook cuando no gestiona correctamente objetos en la memoria. Esto también se conoce como "Micro... • http://www.securityfocus.com/bid/105820 •
CVSS: 9.3EPSS: 20%CPEs: 6EXPL: 0CVE-2018-8524
https://notcve.org/view.php?id=CVE-2018-8524
14 Nov 2018 — A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522, CVE-2018-8576, CVE-2018-8582. Existe una vulnerabilidad de ejecución remota de código en el software de Microsoft Outlook cuando no gestiona correctamente objetos en la memoria. Esto también se conoce como "Micro... • http://www.securityfocus.com/bid/105823 •
CVSS: 9.3EPSS: 16%CPEs: 6EXPL: 0CVE-2018-8582
https://notcve.org/view.php?id=CVE-2018-8582
14 Nov 2018 — A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522, CVE-2018-8524, CVE-2018-8576. Existe una vulnerabilidad de ejecución remota de código cuando Microsoft Outlook analiza archivos de exportación de reglas especialmente manipulados. Esto también se conoce como "Micros... • http://www.securityfocus.com/bid/105825 •
CVSS: 6.5EPSS: 10%CPEs: 5EXPL: 0CVE-2018-8244
https://notcve.org/view.php?id=CVE-2018-8244
14 Jun 2018 — An elevation of privilege vulnerability exists when Microsoft Outlook does not validate attachment headers properly, aka "Microsoft Outlook Elevation of Privilege Vulnerability." This affects Microsoft Office, Microsoft Outlook. Existe una vulnerabilidad de elevación de privilegios cuando Microsoft Outlook no valida correctamente las cabeceras de adjuntos. Esto también se conoce como "Microsoft Outlook Elevation of Privilege Vulnerability". Esto afecta a Microsoft Office y Microsoft Outlook. • http://www.securityfocus.com/bid/104323 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 25%CPEs: 4EXPL: 0CVE-2016-3278
https://notcve.org/view.php?id=CVE-2016-3278
13 Jul 2016 — Microsoft Outlook 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft Outlook 2010 SP2, 2013 SP1, 2013 RT SP1 y 2016 permite a atacantes remotos ejecutar código arbitrario a través de un documento de Office manipulado, también conocida como "Microsoft Office Memory Corruption Vulnerability". • http://www.securityfocus.com/bid/91574 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •