Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS24_AUG_OUTLOOK.NASLHistoryAug 15, 2024 - 12:00 a.m.
Security Updates for Outlook (August 2024)
2024-08-1500:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
outlook security update
remote code execution
cve-2024-38173
microsoft patch
vulnerability
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
21.7%
The Microsoft Outlook application installed on the remote host is missing a security update. It is, therefore, affected by the following vulnerability:
- A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. (CVE-2024-38173)
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
# The descriptive text and package checks in this plugin were
# extracted from the Microsoft Security Updates API. The text
# itself is copyright (C) Microsoft Corporation.
##
include('compat.inc');
if (description)
{
script_id(205596);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/16");
script_cve_id("CVE-2024-38173");
script_xref(name:"MSKB", value:"5002626");
script_xref(name:"MSFT", value:"MS24-5002626");
script_xref(name:"IAVA", value:"2024-A-0493");
script_name(english:"Security Updates for Outlook (August 2024)");
script_set_attribute(attribute:"synopsis", value:
"The Microsoft Outlook application installed on the remote host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The Microsoft Outlook application installed on the remote
host is missing a security update. It is, therefore,
affected by the following vulnerability:
- A remote code execution vulnerability. An attacker can
exploit this to bypass authentication and execute
unauthorized arbitrary commands. (CVE-2024-38173)");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/5002626");
script_set_attribute(attribute:"solution", value:
"Microsoft has released KB5002626 to address this issue.
For Office 365, Office 2016 C2R, or Office 2019, ensure automatic
updates are enabled or open any office app and manually perform an
update.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:S/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-38173");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/08/13");
script_set_attribute(attribute:"patch_publication_date", value:"2024/08/13");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/08/15");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:outlook");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows : Microsoft Bulletins");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("office_installed.nasl", "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl");
script_require_keys("SMB/MS_Bulletin_Checks/Possible");
script_require_ports(139, 445, "Host/patch_management_checks");
exit(0);
}
include('vcf_extras_office.inc');
var bulletin = 'MS24-08';
var kbs = make_list(
'5002626'
);
var constraints = [
{ 'kb':'5002626', 'channel':'MSI', 'fixed_version': '16.0.5461.1001', 'sp' : 0}
];
vcf::microsoft::office_product::check_version_and_report(
kbs:kbs,
constraints:constraints,
severity:SECURITY_WARNING,
bulletin:bulletin,
subproduct:'Outlook'
);
Related
mskb
mskb
openvas
openvas
Microsoft Outlook 2016 RCE Vulnerability (KB5002626)
2024-08-14 00:00:00
cvelist
cvelist
CVE-2024-38173 Microsoft Outlook Remote Code Execution Vulnerability
2024-08-13 17:30:27
nvd
nvd
CVE-2024-38173
2024-08-13 18:15:25
mscve
mscve
Microsoft Outlook Remote Code Execution Vulnerability
2024-08-13 07:00:00
cve
cve
CVE-2024-38173
2024-08-13 18:15:25
vulnrichment
vulnrichment
CVE-2024-38173 Microsoft Outlook Remote Code Execution Vulnerability
2024-08-13 17:30:27
nessus
nessus
Security Updates for Microsoft Office Products C2R (Aug 2024)
2024-08-21 00:00:00
kaspersky
kaspersky
KLA71479 Multiple vulnerabilities in Microsoft Office
2024-08-13 00:00:00
thn
thn
Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Days
2024-08-14 05:48:00
rapid7blog
rapid7blog
Patch Tuesday - August 2024
2024-08-13 23:36:30
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
21.7%
Related for SMB_NT_MS24_AUG_OUTLOOK.NASL