Microsoft

Outlook

117 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2017-8508

  • EPSS 19.4%
  • Published 15.06.2017 01:29:03
  • Last modified 20.04.2025 01:37:25

A security feature bypass vulnerability exists in Microsoft Office software when it improperly handles the parsing of file formats, aka "Microsoft Office Security Feature Bypass Vulnerability".

5.5

CVE-2017-0204

  • EPSS 12.84%
  • Published 12.04.2017 14:59:01
  • Last modified 20.04.2025 01:37:25

Microsoft Outlook 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1, and Microsoft Outlook 2016 allow remote attackers to bypass the Office Protected View via a specially crafted document, aka "Microsoft Office Security Feature Bypass ...

6.5

CVE-2017-0207

  • EPSS 11.66%
  • Published 12.04.2017 14:59:01
  • Last modified 20.04.2025 01:37:25

Microsoft Outlook for Mac 2011 allows remote attackers to spoof web content via a crafted email with specific HTML tags, aka "Microsoft Browser Spoofing Vulnerability."

9.3

CVE-2017-0106

  • EPSS 11.92%
  • Published 12.04.2017 14:59:00
  • Last modified 20.04.2025 01:37:25

Microsoft Excel 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1, and Microsoft Outlook 2016 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Offi...

6.5

CVE-2016-3366

  • EPSS 10.42%
  • Published 14.09.2016 10:59:40
  • Last modified 12.04.2025 10:46:40

Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, Outlook 2016, and Outlook 2016 for Mac do not properly implement RFC 2046, which allows remote attackers to bypass virus or spam detection via crafted MIME data in a...

9.3

CVE-2016-3278

  • EPSS 24.43%
  • Published 13.07.2016 01:59:32
  • Last modified 12.04.2025 10:46:40

Microsoft Outlook 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

9.3

CVE-2015-1641

Warning
  • EPSS 93.53%
  • Published 14.04.2015 20:59:05
  • Last modified 12.04.2025 10:46:40

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, and Office Web Apps Server 2010 SP2 and 2...

5

CVE-2013-3905

  • EPSS 14.65%
  • Published 13.11.2013 00:55:02
  • Last modified 11.04.2025 00:51:21

Microsoft Outlook 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT does not properly expand metadata contained in S/MIME certificates, which allows remote attackers to obtain sensitive network configuration and state information via a crafted certificat...

9.3

CVE-2013-3870

Exploit
  • EPSS 36.72%
  • Published 11.09.2013 14:03:48
  • Last modified 11.04.2025 00:51:21

Double free vulnerability in Microsoft Outlook 2007 SP3 and 2010 SP1 and SP2 allows remote attackers to execute arbitrary code by including many nested S/MIME certificates in an e-mail message, aka "Message Certificate Vulnerability."

9.3

CVE-2010-2728

  • EPSS 28.37%
  • Published 15.09.2010 19:00:19
  • Last modified 11.04.2025 00:51:21

Heap-based buffer overflow in Microsoft Outlook 2002 SP3, 2003 SP3, and 2007 SP2, when Online Mode for an Exchange Server is enabled, allows remote attackers to execute arbitrary code via a crafted e-mail message, aka "Heap Based Buffer Overflow in O...