Major Vulnerability in Microsoft Outlook
Microsoft announced this week that a major vulnerability was discovered in Microsoft Outlook that allows an attacker to steal credentials without interacting with the user. When an attacker sends a specially crafted message to a vulnerable user, Outlook will process the message and attempt to connect to a remote server on port TCP/445 with the user’s NTLM credentials. The attacker can then use these credentials for privilege escalation or lateral movement. All versions of Outlook for Windows are affected. Mobile versions, Mac and Outlook on the web are not impacted. Additionally, since the attack harvests NTLM credentials, only those using Active Directory Domain Services are vulnerable. Organizations using systems joined only to Azure Active Directory are not impacted.
Interlink strongly recommends that clients take quick action to protect your environment.
- Block outgoing port TCP/445 at their firewall.
- Patch Outlook for Windows on all systems as soon as possible. Outlook patches can be accessed at CVE-2023-23397 - Security Update Guide - Microsoft - Microsoft Outlook Elevation of Privilege Vulnerability.
Microsoft’s blog post on the vulnerability can be access at Microsoft Mitigates Outlook Elevation of Privilege Vulnerability | MSRC Blog | Microsoft Security Response Center.
If you need assistance in applying patches or determining if your organization has been impacted, Interlink is ready to assist. Please reach out to your account manager or directly to our service desk at support@interlink.com or 800-900-1150.
Related Posts
Welcome to the Interlink Cloud Blog
By subscribing to the blog, you will be notified whenever a new blog post is created on the site.
All content provided on this blog is for informational purposes only. The owner of this blog makes no representations or warranties regarding the information from our partners or other external sources.
Blog Archive
- October 2023 (1)
- September 2023 (1)
- August 2023 (3)
- July 2023 (2)
- April 2023 (2)
- March 2023 (7)
- January 2023 (2)
- November 2022 (1)
- October 2022 (1)
- September 2022 (3)
- August 2022 (5)
- July 2022 (2)
- June 2022 (8)
- May 2022 (2)
- April 2022 (2)
- January 2022 (4)
- November 2021 (2)
- October 2021 (5)
- September 2021 (1)
- August 2021 (4)
