QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2013-3905

Back to search

CVE-2013-3905

Published: Nov 13, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Microsoft Outlook 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT does not properly expand metadata contained in S/MIME certificates, which allows remote attackers to obtain sensitive network configuration and state information via a crafted certificate in an e-mail message, aka "S/MIME AIA Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

MS13-094
vendor-advisory
x_refsource_MS
TA13-317A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:19239
vdb-entry
signature
x_refsource_OVAL

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now