CVE-2018-8310

Name of the Vulnerable Software and Affected Versions Microsoft Outlook (affected versions not specified) Microsoft Word (affected versions not specified) Microsoft Office (affected versions not specified)

Description A tampering issue exists due to improper handling of specific attachment types when rendering HTML emails. An attacker could exploit this by sending a specially crafted email and attachment to a victim, or by hosting a malicious .eml file on a web server. Successful exploitation could allow embedding untrusted TrueType fonts in an email, potentially leading to further system compromise when combined with other exploits.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.