CVE-2017-8506

Name of the Vulnerable Software and Affected Versions Microsoft Outlook (affected versions not specified) Microsoft Office (affected versions not specified)

Description The issue is related to improper data handling and input validation in Microsoft Office, which can lead to remote code execution. This could allow an attacker to gain control of an affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. The exploitation requires convincing a user to open a specially crafted Office document.

Recommendations For Microsoft Outlook, update to a version that properly validates input before loading dynamic link library (DLL) files. For Microsoft Office, ensure that users are cautious when opening Office documents from untrusted sources, and consider restricting user rights on the system to minimize the impact of a potential exploit. At the moment, there is no information about a newer version that contains a fix for this vulnerability.