Main Vulnerability Database Exploits ID:6145 - Exploit for Input validation error in Lync for macOS - CVE-2018-8474

ID:6145 - Exploit for Input validation error in Lync for macOS - CVE-2018-8474

Published: June 17, 2021

Vulnerability identifier: #VU36702

Vulnerability risk: Medium

CVE-ID: CVE-2018-8474

CWE-ID: CWE-20

Exploitation vector: Remote access

Vulnerable software:
Lync for macOS

Link to public exploit:

https://www.exploit-db.com/exploits/45936/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to manipulate data.

A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.

Remediation

Install update from vendor's website.

ID:6145 - Exploit for Input validation error in Lync for macOS - CVE-2018-8474

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human