CVE-2010-0266

CVE-2010-0266 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Microsoft Office Outlook 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 does not properly verify e-mail attachments with a PR_ATTACH_METHOD property value of ATTACH_BY_REFERENCE, which allows user-assisted remote attackers to execute arbitrary code via a crafted message, aka "Microsoft Outlook SMB Attachment Vulnerability."

Learn more about our Cis Benchmark Audit For Microsoft Office.