CVE-2017-11774 - Microsoft Office Outlook Security Feature Bypass Vulnerability

CVE-2017-11774: Microsoft | Office

Date Added:
2021-11-03

Due Date:
2022-05-03

Vulnerability Name: Microsoft Office Outlook Security Feature Bypass Vulnerability

Description: Microsoft Office Outlook contains a security feature bypass vulnerability due to improperly handling objects in memory. Successful exploitation allows an attacker to execute commands.

Known To Be Used in Ransomware Campaigns?: Unknown

Action: Apply updates per vendor instructions.

Additional Notes: https://nvd.nist.gov/vuln/detail/CVE-2017-11774

Related News Articles: New Specula tool uses Outlook for remote code execution in WindowsJuly 30, 2024

Free security scan for your website

Don't show website scan report rating on the leaderboard