FILE Microsoft Outlook Elevation of Privilege Vulnerability -1 (CVE-2023-23397)

Rule ID

1232367

Severity

Critical

Description

The vulnerability results from the receipt of a crafted Outlook MSG file where the "PidLidReminderFileParameter" - a message property that accepts a universal naming convention (UNC) path - is set to an attacker-controlled resource.

Impact

Privilege escalation

Recommendation

Update vendor's patch.

IPS Category

File vulnerabilities

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2023-23397

T1068

T0819

Keywords

N/A

Date Created

2023/03/16

Last Updated

2024/04/17

This website uses cookies to ensure you get the best experience on our website.

Learn more