SMTP: Microsoft Outlook MIME Email Message Parsing Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Microsoft Outlook. A successful attack can lead to arbitrary code execution.
Extended Description
Double free vulnerability in Microsoft Outlook 2007 SP3 and 2010 SP1 and SP2 allows remote attackers to execute arbitrary code by including many nested S/MIME certificates in an e-mail message, aka "Message Certificate Vulnerability."
Affected Products
Microsoft outlook
References
CVE: CVE-2013-3870
Short Name
SMTP:OUTLOOK:MIME-PARSE-UAF
Severity
Major
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
CVE-2013-3870 Code Email Execution MIME Message Microsoft Outlook Parsing Remote
Release Date
10/21/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3