Lucene search
K

8 matches found

Microsoft Secure
Microsoft Secure
added 2020/06/18 4:0 p.m.295 views

Inside Microsoft Threat Protection: Mapping attack chains from cloud to endpoint

The increasing pervasiveness of cloud services in today’s work environments, accelerated by a crisis that forced companies around the globe to shift to remote work, is significantly changing how defenders must monitor and protect organizations. Corporate data is spread across multiple...

6.8CVSS8.8AI score0.96274EPSS
Exploits15
FireEye
FireEye
added 2019/12/04 12:0 a.m.208 views

Breaking the Rules: A Tough Outlook for Home Page Attacks (CVE-2017-11774)

Attackers have a dirty little secret that is being used to conduct big intrusions. We’ll explain how they're "unpatching" an exploit and then provide new Outlook hardening guidance that is not available elsewhere. Specifically, this blog post covers field-tested automated registry processing for...

6.8CVSS7.9AI score0.59893EPSS
Exploits2References39
Check Point Advisories
Check Point Advisories
added 2019/07/04 12:0 a.m.16 views

Microsoft Outlook Security Feature Bypass (CVE-2017-11774)

...

6.8CVSS7.6AI score0.59893EPSS
Exploits2
Circl
Circl
added 2019/07/03 5:40 a.m.16 views

CVE-2017-11774

creationtimestamp| type| source ---|---|--- 2019-07-03 05:40:32+00:00| seen| MISP/5d1c3fa4-8548-43ed-931c-48ed950d210f 2019-07-03 08:22:13+00:00| exploited| https://t.me/informationsecuritychannel/29027 2019-07-03 19:40:21+00:00| exploited| https://t.me/BleepingComputer/5401 2019-07-04...

7.8CVSS7.1AI score0.59893EPSS
Exploits2References18
NVD
NVD
added 2017/10/13 1:29 p.m.33 views

CVE-2017-11774

Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execute arbitrary commands, due to how Microsoft Office handles objects in memory, aka "Microsoft Outlook Security Feature Bypass Vulnerability."...

7.8CVSS7.8AI score0.59893EPSS
Exploits2References5
CVE
CVE
added 2017/10/13 1:0 p.m.1148 views

CVE-2017-11774

CVE-2017-11774 affects Microsoft Outlook clients (Outlook 2010 SP2, 2013 SP1/RT SP1, 2016) and enables code execution via Outlook home page/persistence vectors. The underlying issue is how Outlook handles in-memory objects, allowing an attacker to bypass security features and run arbitrary comman...

7.8CVSS7.7AI score0.59893EPSS
In wildExploits2References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2017/10/13 12:0 a.m.56 views

CVE-2017-11774

Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execute arbitrary commands, due to how Microsoft Office handles objects in memory, aka “Microsoft Outlook Security Feature Bypass Vulnerability.” Recent assessments: Assessed Attacker Value: 0 Assessed...

7.8CVSS7.8AI score0.59893EPSS
In wildExploits2References6
OpenVAS
OpenVAS
added 2017/10/11 12:0 a.m.83 views

Microsoft Outlook 2010 Service Pack 2 Security Feature Bypass Vulnerability (KB4011196)

This host is missing an important security update according to Microsoft KB4011196 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

7.8CVSS7.6AI score0.59893EPSS
Exploits2References4
Rows per page
Query Builder