First published: Tue Jan 09 2018(Updated: )
Microsoft Outlook 2007, Microsoft Outlook 2010 and Microsoft Outlook 2013 allow a remote code execution vulnerability due to the way email messages are parsed, aka "Microsoft Outlook Remote Code Execution Vulnerability". This CVE is unique from CVE-2018-0791.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Office | =2010-sp2 | |
Microsoft Office | =2016 | |
Microsoft Office | =2016-c2r | |
Microsoft Office Compatibility Pack | =sp3 | |
Microsoft Word | =2007-sp3 | |
Microsoft Word | =2010-sp2 | |
Microsoft Word | =2013-sp1 | |
Microsoft Word | =2013-sp1 | |
Microsoft Word | =2016 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-0793 is a remote code execution vulnerability in Microsoft Outlook 2007, 2010, and 2013.
This vulnerability can be exploited by sending a specially crafted email message to a user and convincing them to open it.
Microsoft Outlook 2007, 2010, and 2013 are affected by this vulnerability.
CVE-2018-0793 has a severity rating of 7.8 (Critical).
To protect yourself, ensure that you have installed the latest security updates and patches for Microsoft Outlook.