CVE-2017-0204

Published: Apr 12, 2017Modified: May 13, 2026

5.5

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

Microsoft Outlook 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1, and Microsoft Outlook 2016 allow remote attackers to bypass the Office Protected View via a specially crafted document, aka "Microsoft Office Security Feature Bypass Vulnerability."

Affected (4)

Products: Microsoft: Outlook

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Microsoft Outlook	Version 2007 sp3
Microsoft Outlook	Version 2010 sp2
Microsoft Outlook	Version 2013 sp1
Microsoft Outlook	Version 2016

References (6)

http://www.securityfocus.com/bid/97458

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1038227

Source: secure@microsoft.com

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0204

Source: secure@microsoft.com

PatchVendor Advisory

http://www.securityfocus.com/bid/97458

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1038227

Source: af854a3a-2127-422b-91ae-364da2661108

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0204

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.