Microsoft Outlook CVE-2018-8576 Remote Code Execution Vulnerability

Bugtraq ID:	105822
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2018-8576
Remote:	Yes
Local:	No
Published:	Nov 13 2018 12:00AM
Updated:	Nov 13 2018 12:00AM
Credit:	Yonghui Han of Fortinet�??s FortiGuard Labs
Vulnerable:	Microsoft Outlook 2016 (64-bit editions) Microsoft Outlook 2016 (32-bit editions) Microsoft Outlook 2013 Service Pack 1 (64-bit editions) 0 Microsoft Outlook 2013 Service Pack 1 (32-bit editions) 0 Microsoft Outlook 2013 RT Service Pack 1 Microsoft Outlook 2010 (64-bit editions) Service Pack 2 Microsoft Outlook 2010 (32-bit editions) Service Pack 2 Microsoft Office 365 ProPlus for 64-bit Systems 0 Microsoft Office 365 ProPlus for 32-bit Systems 0 Microsoft Office 2019 for 64-bit editions 0 Microsoft Office 2019 for 32-bit editions 0
Not Vulnerable:

Microsoft Outlook CVE-2018-8576 Remote Code Execution Vulnerability

Microsoft Outlook is prone to a remote code-execution vulnerability.

Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions.

Microsoft Outlook CVE-2018-8576 Remote Code Execution Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Microsoft Outlook CVE-2018-8576 Remote Code Execution Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Microsoft Outlook CVE-2018-8576 Remote Code Execution Vulnerability

References:

• Microsoft Homepage (Microsoft)
  
• CVE-2018-8576 | Microsoft Outlook Remote Code Execution Vulnerability (Microsoft)