Home

CVE-2017-0207

Description

Microsoft Outlook for Mac 2011 allows remote attackers to spoof web content via a crafted email with specific HTML tags, aka Microsoft Browser Spoofing Vulnerability.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
11.655

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Excel Information Disclosure Vulnerability for Microsoft Excel 2010 (KB3191847) 64-Bit EditionWindows
Microsoft Excel Information Disclosure Vulnerability for Microsoft Excel 2010 (KB3191847) 32-Bit EditionWindows
Microsoft Excel Information Disclosure Vulnerability for Microsoft Office Compatibility Pack Service Pack 3 (KB3191830)Windows
Microsoft Office XSS Elevation of Privilege Vulnerability for Microsoft SharePoint Enterprise Server 2013 (KB3178724)Windows
Microsoft Office XSS Elevation of Privilege Vulnerability for Microsoft Office Web Apps Server 2013 (KB3178725)Windows
Microsoft Office XSS Elevation of Privilege Vulnerability for Microsoft Web Applications (KB3191845)Windows
Microsoft Office XSS Elevation of Privilege Vulnerability for Microsoft Excel Web App (KB3101522)Windows
Microsoft OneNote Remote Code Execution Vulnerability for Microsoft Office OneNote 2007 (KB3191829) Windows
Microsoft OneNote Remote Code Execution Vulnerability for Microsoft Office 2010 (KB2589382) 64-Bit EditionWindows
Microsoft OneNote Remote Code Execution Vulnerability for Microsoft Office 2010 (KB2589382) 32-Bit EditionWindows
Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows for Microsoft Office 2013 (KB3178710) 64-Bit Edition - Petya ransomware attack (CVE-2017-0199)Windows
Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows for Microsoft Office 2013 (KB3178710) 32-Bit Edition - Petya ransomware attack (CVE-2017-0199)Windows
Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows for Microsoft Office 2016 (KB3178703) 64-Bit Edition - Petya ransomware attack (CVE-2017-0199)Windows
Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows for Microsoft Office 2016 (KB3178703) 32-Bit Edition - Petya ransomware attack (CVE-2017-0199)Windows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office Outlook 2007 (KB3127890)Windows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Outlook 2016 (KB3178664) 64-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Outlook 2016 (KB3178664) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Outlook 2013 (KB3172519) 64-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Outlook 2013 (KB3172519) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Outlook 2010 (KB3118388) 32-Bit EditionWindows
Defense-in-Depth Update for Microsoft Office for Microsoft Office 2016 (KB3178702) 32-Bit EditionWindows
Defense-in-Depth Update for Microsoft Office for Microsoft Office 2016 (KB3178702) 64-Bit EditionWindows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-22182Security Update for Microsoft Excel 2010 (KB3191847) 64-Bit Edition
PATCH-22181Security Update for Microsoft Excel 2010 (KB3191847) 32-Bit Edition
PATCH-22200 Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB3191830)
PATCH-22195Security Update for Microsoft SharePoint Enterprise Server 2013 (KB3178724)
PATCH-22183Security Update for Microsoft Office Web Apps Server 2013 (KB3178725)
PATCH-22184Security Update for Microsoft Web Applications (KB3191845)
PATCH-22185Security Update for Microsoft Excel Web App (KB3101522)
PATCH-22186Security Update for Microsoft Office OneNote 2007 (KB3191829)
PATCH-22188Security Update for Microsoft Office 2010 (KB2589382) 64-Bit Edition
PATCH-22187Security Update for Microsoft Office 2010 (KB2589382) 32-Bit Edition
PATCH-22168Security Update for Microsoft Office 2013 (KB3178710) 64-Bit Edition - Petya ransomware attack (CVE-2017-0199)
PATCH-22169Security Update for Microsoft Office 2013 (KB3178710) 32-Bit Edition - Petya ransomware attack (CVE-2017-0199)
PATCH-22198Security Update for Microsoft Office 2016 (KB3178703) 64-Bit Edition - Petya ransomware attack (CVE-2017-0199)
PATCH-22197Security Update for Microsoft Office 2016 (KB3178703) 32-Bit Edition - Petya ransomware attack (CVE-2017-0199)
PATCH-22174Security Update for Microsoft Office Outlook 2007 (KB3127890)
PATCH-22176Security Update for Microsoft Outlook 2016 (KB3178664) 64-Bit Edition
PATCH-22175Security Update for Microsoft Outlook 2016 (KB3178664) 32-Bit Edition
PATCH-22180Security Update for Microsoft Outlook 2013 (KB3172519) 64-Bit Edition
PATCH-22179Security Update for Microsoft Outlook 2013 (KB3172519) 32-Bit Edition
PATCH-22178Security Update for Microsoft Outlook 2010 (KB3118388) 32-Bit Edition
PATCH-22170Security Update for Microsoft Office 2016 (KB3178702) 32-Bit Edition
PATCH-22171Security Update for Microsoft Office 2016 (KB3178702) 64-Bit Edition

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234