MS08-015 - Critical: Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (949031) - Version:1.4 |
|
| BugsAlert Home > MS08-015 - Critical: Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (949031) - Version:1.4 | |
|
Severity Rating: Critical - Revision Note: V1.4 (April 16, 2008): Bulletin updated: Added entry to Update FAQ to describe additional security features included for Microsoft Office 2003 Service Pack 2.Summary: This security update resolves a privately reported vulnerability in Microsoft Office Outlook. The vulnerability could allow remote code execution if Outlook is passed a specially crafted mailto URI. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. This vulnerability is not exploitable by simply viewing an e-mail through the Outlook preview pane. Original Source: http://www.microsoft.com/technet/security/bulletin/MS08-015.mspx?pubDate=2008-04-16 Learn more about MS08-015 - Critical: Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (949031) - Version:1.4 |
|
|
Tags: ms08-015 critical vulnerability microsoft outlook remote code execution 949031 version 1.4 |
|
Related Items |
|
|
FrSIRT - Mandriva Security Update Fixes Emacs Insecure Temporary Files
|
|
|
Vuln: VirtueMart Unspecified Arbitrary PHP Code Execution Vulnerability
|
|
|
Invoice Spam Shifts to Western Union
|
|
|
CVE-2007-6610 (Unp)
|
|
|
CVE-2008-3662 (gallery)
|
|
|
CVE-2008-3938 (opendb)
|
|
|
CVE-2008-0597 (CUPS)
|
|
