Welcome to Scribd!

CERT-In Vulnerability Notes in Outlook

Uploaded by

0% found this document useful (0 votes)

1 views1 page

A remote code execution vulnerability was found in Microsoft Outlook that could allow a remote attacker to execute arbitrary code on a targeted system by enticing a victim to open a specially crafted file. The vulnerability exists due to improper neutralization of user-supplied input in the Preview Pane feature. Microsoft has released security updates to address this issue, and users are advised to apply the appropriate updates mentioned on Microsoft's website.

Original Description:

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

1 views1 page

CERT-In Vulnerability Notes in Outlook

Uploaded by

binefa8329

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 1

Search inside document

16/02/2024, 19:17 CERT-In Vulnerability Notes

CERT-In Vulnerability Note CIVN-2024-0046

Remote Code Execution Vulnerability in Microsoft Outlook

Original Issue Date:February 15, 2024

Severity Rating: CRITICAL

Software Affected

Microsoft Office 2016 for 32-bit edition and 64-bit editions

Microsoft Office LTSC 2021 for 32-bit editions and 64-bit editions
Microsoft 365 Apps for Enterprise for 32-bit edition and 64-bit editions
Microsoft Office 2019 for 32-bit edition and 64-bit editions

Overview

A vulnerability has been reported in Microsoft Outlook which could be exploited by a remote attacker to execute arbitrary code
on a targeted system.

Description

This vulnerability exists in Microsoft Outlook due to improper neutralization of user-supplied input by the Preview Pane feature.
A remote attacker could exploit this vulnerability by enticing a victim to open a specially-crafted file.

Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code with elevated privileges on
the targeted system.

Solution

Apply appropriate security updates as mentioned in the below link:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21413

Vendor Information

Microsoft
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21413

References

Microsoft
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21413

CVE Name
CVE-2024-21413

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Email: info@cert-in.org.in
Phone: +91-11-22902657

Postal address

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, CGO Complex, Lodhi Road,
New Delhi - 110 003
India

about:blank 1/1

CompTIA Premium SY0-401 v2016-04-11 by VCEplus 200q1752q
Document150 pages
CompTIA Premium SY0-401 v2016-04-11 by VCEplus 200q1752q
Akanksha Verma
No ratings yet
Microsoft Windows Intune 2.0: Quickstart Administration
From Everand
Microsoft Windows Intune 2.0: Quickstart Administration
David Overton
No ratings yet
Analisis Active Directory
Document1,137 pages
Analisis Active Directory
Nelson Torres
No ratings yet
Cisco Unified Contact Center Express - Scripts - Release 8.0 PDF
Document640 pages
Cisco Unified Contact Center Express - Scripts - Release 8.0 PDF
marbu76
No ratings yet
Sample Vulnerability Assessment Report PurpleSec
Document16 pages
Sample Vulnerability Assessment Report PurpleSec
Balaji Rajaraman
100% (2)
Security Checklist For The Internet of Things: An Essential Guide To Securing Connected Products
Document13 pages
Security Checklist For The Internet of Things: An Essential Guide To Securing Connected Products
Martín Santiago Francisco
No ratings yet
Iot Fundamentals: Iot Security Final (Eoc) Assessment Answers
Document8 pages
Iot Fundamentals: Iot Security Final (Eoc) Assessment Answers
Fatjon
No ratings yet
CyberOps 2019 Skills Assessment
Document6 pages
CyberOps 2019 Skills Assessment
edu maria
100% (2)
A 1-2-3 Approach To ICS Security: Part 1-Secure Industrial Networks
Document5 pages
A 1-2-3 Approach To ICS Security: Part 1-Secure Industrial Networks
ep230842
No ratings yet
Sample Network Vulnerability Assessment Report: Sales@purplesec - Us
Document5 pages
Sample Network Vulnerability Assessment Report: Sales@purplesec - Us
Фарида Таджибаева
No ratings yet
CERT-In Vulnerability Notes-0025
Document2 pages
CERT-In Vulnerability Notes-0025
vincy salam
No ratings yet
CERT-In Vulnerability Notes - Google Chrome
Document2 pages
CERT-In Vulnerability Notes - Google Chrome
bimaf19491
No ratings yet
Threat Intelligence Bullletin 15. 2. 2021 Od Check Point Research
Document2 pages
Threat Intelligence Bullletin 15. 2. 2021 Od Check Point Research
Zivesk
No ratings yet
Final Internal Audit Report: Operating Systems Audit - Microsoft Direct Access
Document12 pages
Final Internal Audit Report: Operating Systems Audit - Microsoft Direct Access
Elis Jimina Perez Vaca
No ratings yet
CERT-In Vulnerability Notes
Document2 pages
CERT-In Vulnerability Notes
bimaf19491
No ratings yet
Vs. Cisco Iron Port: Top Attacks and Breaches
Document2 pages
Vs. Cisco Iron Port: Top Attacks and Breaches
Zivesk
No ratings yet
Vs. Cisco Iron Port: Top Attacks and Breaches
Document2 pages
Vs. Cisco Iron Port: Top Attacks and Breaches
Zivesk
No ratings yet
Annexure - B
Document10 pages
Annexure - B
abebechdandesa
No ratings yet
SN-10.CVE-2021-34527 PrintNightmare Vulnerability v1.0.1
Document4 pages
SN-10.CVE-2021-34527 PrintNightmare Vulnerability v1.0.1
Isaac Vargas
No ratings yet
Common Vulnerabilities and Exposures
Document5 pages
Common Vulnerabilities and Exposures
Nav Singh
No ratings yet
Info Secutity
Document5 pages
Info Secutity
Daud Ahmed
No ratings yet
Print Spooler Remote Code
Document3 pages
Print Spooler Remote Code
Stanly Jebaroons S
No ratings yet
R02 VulnerabilityStatus
Document7 pages
R02 VulnerabilityStatus
私はあなたを愛してヘクター
No ratings yet
Windows Internet Key (IKE) Remote Code Excusion Vulnerability Analysis
Document11 pages
Windows Internet Key (IKE) Remote Code Excusion Vulnerability Analysis
rakivanatan
No ratings yet
Vs. Cisco Iron Port: Top Attacks and Breaches
Document2 pages
Vs. Cisco Iron Port: Top Attacks and Breaches
Zivesk
No ratings yet
In The Wake of Solarwinds Compromise
Document10 pages
In The Wake of Solarwinds Compromise
alfred.x.andrews
No ratings yet
Caja Blanca Yhn6en
Document101 pages
Caja Blanca Yhn6en
Alan Colmenares
No ratings yet
2021 Network Security Report
Document9 pages
2021 Network Security Report
Heber Vazquez
No ratings yet
Xcerts Certifications
Document4 pages
Xcerts Certifications
Student Hulu
No ratings yet
CyberSecurity Threat Trends 2022-M03
Document7 pages
CyberSecurity Threat Trends 2022-M03
AzaelCarion
No ratings yet
Documento1 2
Document4 pages
Documento1 2
hajodocumento
No ratings yet
UNIT 4 - 2 - Challenges in IoT
Document29 pages
UNIT 4 - 2 - Challenges in IoT
Ritesh Shukla
No ratings yet
Lecture 1
Document66 pages
Lecture 1
วิศรุต สื่อสุวรรณ
No ratings yet
Lab 6 Identify Threats and Vulnerabilities in An IT Infrastructure Object of LAB6
Document3 pages
Lab 6 Identify Threats and Vulnerabilities in An IT Infrastructure Object of LAB6
Henry Wiliam
No ratings yet
Alert
Document2 pages
Alert
Nilesh Kumar
No ratings yet
Multiple Vulnerabilities in Apple macOS
Document2 pages
Multiple Vulnerabilities in Apple macOS
wesot52378
No ratings yet
Security Bulletin Summary For May 2020 Updates
Document208 pages
Security Bulletin Summary For May 2020 Updates
Yeo Chins
No ratings yet
VU23213 Assessment 1 v1.0
Document3 pages
VU23213 Assessment 1 v1.0
Ryan Nguyen
No ratings yet
Access Control Proposal
Document9 pages
Access Control Proposal
alenk91
No ratings yet
Patch O
Document2 pages
Patch O
fauzeeyah adepoju
No ratings yet
CERT-In Advisory - 9 - Aug
Document3 pages
CERT-In Advisory - 9 - Aug
Cdrprojectgwl Gwalior
No ratings yet
Alert Regarding Vulnerabilities in Pepperl
Document1 page
Alert Regarding Vulnerabilities in Pepperl
Min Lwin
No ratings yet
CVE 2023 2305 CitrixBleed
Document2 pages
CVE 2023 2305 CitrixBleed
Pranav Haran Harichandran
No ratings yet
64-Bit Insider Volume 1 Issue 10
Document5 pages
64-Bit Insider Volume 1 Issue 10
Nayeem.khan
No ratings yet
Endpoint Security Solution Guide
Document21 pages
Endpoint Security Solution Guide
Găûřăv Wolvarine Shăřmă
No ratings yet
IoT Sec Quiz 2
Document10 pages
IoT Sec Quiz 2
Pablo Parreño
No ratings yet
Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475) - Mandiant
Document16 pages
Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475) - Mandiant
Dikerson Carlos
No ratings yet
Prueba 0
Document21 pages
Prueba 0
maholisan
No ratings yet
Vs. Cisco Iron Port: Top Attacks and Breaches
Document2 pages
Vs. Cisco Iron Port: Top Attacks and Breaches
Zivesk
No ratings yet
Mainsoft Eyed As Windows Source Code Leak - InternetNews
Document2 pages
Mainsoft Eyed As Windows Source Code Leak - InternetNews
Mariusz Pruszowski
No ratings yet
Analisis WEB PABELLON
Document93 pages
Analisis WEB PABELLON
Nelson Torres
No ratings yet
CVE-2010-3978 Spree E-Commerce JSON Hijacking Vulnerabilities
Document5 pages
CVE-2010-3978 Spree E-Commerce JSON Hijacking Vulnerabilities
Conviso Application Security
No ratings yet
Microsoft: Exam Questions AZ-220
Document8 pages
Microsoft: Exam Questions AZ-220
IamSajid Jatoi
No ratings yet
1126 Lab Learning The Details of Attacks
Document2 pages
1126 Lab Learning The Details of Attacks
setyabudhi
No ratings yet
Endpoint Security Guide Beginners
Document21 pages
Endpoint Security Guide Beginners
Sharu Sparky
No ratings yet
Unit 2 Assignment 2 Microsoft Environment Analysis
Document4 pages
Unit 2 Assignment 2 Microsoft Environment Analysis
Daniel Ross
100% (1)
Threat Intelligence Bulletin Z 11. 1. 2021
Document2 pages
Threat Intelligence Bulletin Z 11. 1. 2021
Zivesk
No ratings yet
Module 2 - Technologies Behind Iot: 2.1 Challenges and Issues, Security Control Units
Document21 pages
Module 2 - Technologies Behind Iot: 2.1 Challenges and Issues, Security Control Units
Adarsh Aj
No ratings yet
Kls
Document5 pages
Kls
Novrya Benny
100% (2)
Correct Answer: You Answered
Document21 pages
Correct Answer: You Answered
Pablo Parreño
No ratings yet