← back
CVE-2010-0266

CVE-2010-0266

EPSS 55.3%
Microsoft Office Outlook 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 does not properly verify e-mail attachments with a PR_ATTACH_METHOD property value of ATTACH_BY_REFERENCE, which allows user-assisted remote attackers to execute arbitrary code via a crafted message, aka "Microsoft Outlook SMB Attachment Vulnerability."
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/16700unverifiedexploitdbwww.exploit-db.com/exploits/16699unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-045https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11623http://www.us-cert.gov/cas/techalerts/TA10-194A.html