Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-6wgv-wjfv-42f8

Опубликовано: 02 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Microsoft Office Outlook 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 does not properly verify e-mail attachments with a PR_ATTACH_METHOD property value of ATTACH_BY_REFERENCE, which allows user-assisted remote attackers to execute arbitrary code via a crafted message, aka "Microsoft Outlook SMB Attachment Vulnerability."

Microsoft Office Outlook 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 does not properly verify e-mail attachments with a PR_ATTACH_METHOD property value of ATTACH_BY_REFERENCE, which allows user-assisted remote attackers to execute arbitrary code via a crafted message, aka "Microsoft Outlook SMB Attachment Vulnerability."

Ссылки

EPSS

Процентиль: 99%
0.82804
Высокий

CVE ID

CVE-2010-0266

Дефекты

CWE-94

Связанные уязвимости

nvd логотип

CVE-2010-0266

nvd
больше 15 лет назад

Microsoft Office Outlook 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 does not properly verify e-mail attachments with a PR_ATTACH_METHOD property value of ATTACH_BY_REFERENCE, which allows user-assisted remote attackers to execute arbitrary code via a crafted message, aka "Microsoft Outlook SMB Attachment Vulnerability."

EPSS

Процентиль: 99%
0.82804
Высокий

CVE ID

CVE-2010-0266

Дефекты

CWE-94