Main
Vulnerability Database
Exploits
ID:4532 - Exploit for Information disclosure in Microsoft Office and Microsoft Outlook - CVE-2020-1493
ID:4532 - Exploit for Information disclosure in Microsoft Office and Microsoft Outlook - CVE-2020-1493
Published: September 1, 2020
Vulnerability identifier: #VU45551
Vulnerability risk: Low
CVE-ID: CVE-2020-1493
CWE-ID: CWE-200
Exploitation vector: Remote access
Vulnerable software:
Microsoft Office
Microsoft Outlook
Microsoft Office
Microsoft Outlook
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
An information disclosure vulnerability exists when attaching files to Outlook messages. This vulnerability could potentially allow users to share attached files such that they are accessible by anonymous users where they should be restricted to specific users.
Remediation
Install updates from vendor's website.