vulnerability

Microsoft Office: CVE-2017-11774: Microsoft Outlook Security Feature Bypass Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Oct 13, 2017	Jun 20, 2023	Jun 20, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Oct 13, 2017

Added

Jun 20, 2023

Modified

Jun 20, 2023

Description

Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execute arbitrary commands, due to how Microsoft Office handles objects in memory, aka "Microsoft Outlook Security Feature Bypass Vulnerability."

Solution

microsoft-outlook_2016-kb4011162

References

BID-101098
CVE-2017-11774
https://attackerkb.com/topics/CVE-2017-11774
URL-https://support.microsoft.com/help/4011162

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today