ID CVE-2018-0819
Summary Microsoft Office 2016 for Mac allows an attacker to send a specially crafted email attachment to a user in an attempt to launch a social engineering attack, such as phishing, due to how Outlook for Mac displays encoded email addresses, aka "Spoofing Vulnerability in Microsoft Office for Mac."
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:office:2016:*:*:*:*:mac_os_x:*:*
    cpe:2.3:a:microsoft:office:2016:*:*:*:*:mac_os_x:*:*
CVSS
Base: 4.3 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:P/A:N
refmap via4
bid 102464
confirm https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0819
sectrack 1040153
Last major update 03-10-2019 - 00:03
Published 10-01-2018 - 01:29
Last modified 03-10-2019 - 00:03
Back to Top