Endpoint VulnerabilityMicrosoft Outlook CVE-2018-8244 Elevation of Privilege Vulnerability
Description
Microsoft Outlook elevation of privilege vulnerability due to improper attachment header validation allows attackers to send hidden attachments that execute when a victim clicks a link; update fixes parsing to prevent privilege escalation in Outlook.
Affected Applications
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions
Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions
Microsoft Outlook 2010 Service Pack 2 (32-bit editions)
Microsoft Outlook 2010 Service Pack 2 (64-bit editions)
Microsoft Outlook 2013 RT Service Pack 1
Microsoft Outlook 2013 Service Pack 1 (32-bit editions)
Microsoft Outlook 2013 Service Pack 1 (64-bit editions)
Microsoft Outlook 2016 x64
Microsoft Outlook 2016 x86
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2022-12-21 | 1.00365 |
Modified
|
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions,Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions,Microsoft Outlook 2010 Service Pack 2 (32-bit editions),Microsoft Outlook 2010 Service Pack 2 (64-bit editions),Microsoft Outlook 2013 RT Service Pack 1,Microsoft Outlook 2013 Service Pack 1 (32-bit editions),Microsoft Outlook 2013 Service Pack 1 (64-bit editions),Microsoft Outlook 2016 x64,Microsoft Outlook 2016 x86 |
| 2022-12-14 | 1.00363 |
Modified
|
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions,Microsoft Outlook 2013 RT Service Pack 1,Microsoft Outlook 2010 Service Pack 2 (64-bit editions),Microsoft Outlook 2013 Service Pack 1 (32-bit editions),Microsoft Outlook 2013 Service Pack 1 (64-bit editions),Microsoft Outlook 2010 Service Pack 2 (32-bit editions),Microsoft Outlook 2016 x86,Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions,Microsoft Outlook 2016 x64 |
| 2019-09-11 | 1.00194 |
Modified
|
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions,Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions,Microsoft Outlook 2010 Service Pack 2 (32-bit editions),Microsoft Outlook 2010 Service Pack 2 (64-bit editions),Microsoft Outlook 2013 RT Service Pack 1,Microsoft Outlook 2013 Service Pack 1 (32-bit editions),Microsoft Outlook 2013 Service Pack 1 (64-bit editions),Microsoft Outlook 2016 x64,Microsoft Outlook 2016 x86 |
| 2019-01-08 | 1.00178 |
Modified
|
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions,Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions,Microsoft Outlook 2010 Service Pack 2 (32-bit editions),Microsoft Outlook 2010 Service Pack 2 (64-bit editions),Microsoft Outlook 2013 RT Service Pack 1,Microsoft Outlook 2013 Service Pack 1 (32-bit editions),Microsoft Outlook 2013 Service Pack 1 (64-bit editions),Microsoft Outlook 2016 x64,Microsoft Outlook 2016 x86 |
| 2018-06-13 | 1.00165 |
New
|
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions,Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions,Microsoft Outlook 2010 Service Pack 2 (32-bit editions),Microsoft Outlook 2010 Service Pack 2 (64-bit editions),Microsoft Outlook 2013 RT Service Pack 1,Microsoft Outlook 2013 Service Pack 1 (32-bit editions),Microsoft Outlook 2013 Service Pack 1 (64-bit editions),Microsoft Outlook 2016 x64,Microsoft Outlook 2016 x86 |
| ID | 50014 |
| Created | Jul 11, 2018 |
| Description Updated |
Jan 10, 2026 |
| CVE ID | |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions , Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions , Microsoft Outlook 2010 Service Pack 2 (32-bit editions) , Microsoft Outlook 2010 Service Pack 2 (64-bit editions) , Microsoft Outlook 2013 RT Service Pack 1 , Microsoft Outlook 2013 Service Pack 1 (32-bit editions) , Microsoft Outlook 2013 Service Pack 1 (64-bit editions) , Microsoft Outlook 2016 x64 , Microsoft Outlook 2016 x86 |