KLA11536 Multiple vulnerabilities in Microsoft Office Products: Microsoft Outlook (+1) Vendor: Microsoft Severity: Critical Detect Date: 08/13/2019

Aug 28, 2019 12:00 pm Cyber Security 270
KLA11536 Multiple vulnerabilities in Microsoft Office Products: Microsoft Outlook (+1) Vendor: Microsoft Severity: Critical Detect Date: 08/13/2019

KLA11536Multiple vulnerabilities in Microsoft Office


Updated: 08/20/2019



Detect date


?



08/13/2019

Severity


?



Critical

Description




Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, gain privileges, obtain sensitive information.


Below is a complete list of vulnerabilities:


  • A cross-site-scripting (XSS) vulnerability Microsoft Office SharePoint can be exploited remotely via specially crafted web to spoof user interface.

  • A spoofing vulnerability in Outlook iOS can be exploited remotely via specially crafted email to spoof user interface.

  • A remote code execution vulnerability in Microsoft Word can be exploited remotely via specially crafted file to execute arbitrary code.

  • An elevation of privilege vulnerability in Microsoft Outlook can be exploited remotely via specially crafted email to gain privileges.

  • A memory corruption vulnerability in Microsoft Outlook can be exploited remotely via specially crafted file to execute arbitrary code.

  • A remote code execution vulnerability in Microsoft Outlook can be exploited remotely via specially crafted file to execute arbitrary code.

  • An information disclosure vulnerability in Microsoft SharePoint can be exploited remotely via specially crafted application to obtain sensitive information.

  • An information disclosure vulnerability in Microsoft Graphics Component can be exploited remotely via specially crafted application to obtain sensitive information.

  • A remote code execution vulnerability in Jet Database Engine can be exploited remotely via specially crafted file to execute arbitrary code.

  • A remote code execution vulnerability in Microsoft Graphics can be exploited remotely via specially crafted embedded to execute arbitrary code.



    • Affected products




    Microsoft SharePoint Enterprise Server 2016Microsoft SharePoint Enterprise Server 2013 Service Pack 1Microsoft SharePoint Server 2019Outlook for iOSMicrosoft Office 2019 for 64 ..

    Support the originator by clicking the read the rest link below.

    kla11536 multiple vulnerabilities microsoft office products microsoft outlook vendor microsoft severity critical detect
    Read The Rest from the original source
    threats.kaspersky.com

    Related News

    Be in Touch

    All Rights Reserved #1 Source for Cyber Security News, Reports and Threat Intelligence
    Powered By The Internet!!!!