POP3: Microsoft Office CVE-2018-0950 Information Disclosure
This signature detects attempt to exploit an information disclosure vulnerability which has been reported in a component of Microsoft Office. A remote attacker could exploit this vulnerability by enticing a victim user to open a maliciously crafted document. Successful exploitation allows the victim machine to initiate an SMB connection to the attacker-controlled machines which can lead to the disclosure of the hash password.
Extended Description
An information disclosure vulnerability exists when Office renders Rich Text Format (RTF) email messages containing OLE objects when a message is opened or previewed, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microsoft Word, Microsoft Office. This CVE ID is unique from CVE-2018-1007.
Affected Products
Microsoft office_compatibility_pack
Short Name
POP3:OFFICE-OLE-INFO-DISC
Severity
Minor
Recommended
False
Recommended Action
None
Category
POP3
Keywords
CVE-2018-0950 Disclosure Information Microsoft Office bid:103642
Release Date
06/04/2018
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3602
False Positive
Unknown
Vendors
Microsoft
CVSS Score
4.3