FortiClient VulnerabilityCVE-2018-8310 Microsoft Office Tampering Vulnerability
Description
A tampering vulnerability exists when Microsoft Outlook does not properly handle specific attachment types when rendering HTML emails. An attacker could exploit the vulnerability by sending a specially crafted email and attachment to a victim, or by hosting a malicious .eml file on a web server.
Affected Applications
Microsoft Office 2010 Service Pack 2 (32-bit editions)
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions
Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions
Microsoft Word 2010 Service Pack 2 (32-bit editions)
Microsoft Word 2010 Service Pack 2 (64-bit editions)
Microsoft Word 2013 RT Service Pack 1
Microsoft Word 2013 Service Pack 1 (32-bit editions)
Microsoft Word 2013 Service Pack 1 (64-bit editions)
Microsoft Word 2016 x64
Microsoft Word 2016 x86
CVE References
CVE-2018-8310Other References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8310| ID | 50187 |
| Created | Jul 11, 2018 |
| Description Updated |
Dec 21, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Microsoft Office 2010 Service Pack 2 (32-bit editions) , Microsoft Office 2010 Service Pack 2 (64-bit editions) , Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions , Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions , Microsoft Word 2010 Service Pack 2 (32-bit editions) , Microsoft Word 2010 Service Pack 2 (64-bit editions) , Microsoft Word 2013 RT Service Pack 1 , Microsoft Word 2013 Service Pack 1 (32-bit editions) , Microsoft Word 2013 Service Pack 1 (64-bit editions) , Microsoft Word 2016 x64 , Microsoft Word 2016 x86 |