RULE(RULE ID:505883)

Rule General Information
Release Date: 2024-02-27
Rule Name: Microsoft Outlook Remote Code Execution Vulnerability (CVE-2024-21413)
Severity:
CVE ID:
Rule Protection Details
Description: Microsoft has identified a critical security vulnerability, CVE-2024-21413, in Microsoft Outlook, affecting multiple versions, including Microsoft Office LTSC 2021, Microsoft 365 Apps for Enterprise, Microsoft Outlook 2016, and Microsoft Office 2019 (under extended support). This Remote Code Execution (RCE) bug allows remote, unauthenticated attackers to exploit Outlook easily.
Impact: An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software.
Affected OS: Windows, Linux, Others
Reference: https://research.checkpoint.com/2024/the-risks-of-the-monikerlink-bug-in-microsoft-outlook-and-the-big-picture/
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21413
https://cxsecurity.com/cveshow/CVE-2024-21413/
Solutions
Refer to the announcement or patch by the vendor: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21413