CVE-2018-8474
published 2018-09-13CVE-2018-8474: A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security…
PriorityP264high7.5CVSS 3.0
AVNACLPRNUINSUCNIHAN
EXPLOIT
EPSS
38.18%
98.4th percentile
A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | lync_for_mac | — | — |
| microsoft | microsoft_lync | — | — |
| msrc | microsoft_lync_for_mac_2011 | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor for use of the Lync 2013 SDK DLL (Microsoft.Lync.Model.dll) being loaded by unexpected or non-standard processes, as the exploit requires it on the originating machine. ↗
- →Monitor for PowerShell scripts invoking Microsoft.Lync.Model namespace methods (LyncClient::GetClient, ConversationManager.AddConversation, BeginSendMessage) as indicators of programmatic IM injection. ↗
- ·Microsoft has confirmed no patch will be issued for this vulnerability in Lync for Mac 2011. The only remediation is migration to a newer client. ↗
- ·The targeted victim requires no interaction after receiving the malicious message, making endpoint-side behavioral detection (unexpected browser launch or file download from Lync process) the primary detection surface. ↗
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
vendor_msrc7.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-f9xx-wcf7-jwv3: A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Se
ghsa_unreviewed·2022-05-14
CVE-2018-8474 [HIGH] CWE-20 GHSA-f9xx-wcf7-jwv3: A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Se
A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.
Microsoft
Lync for Mac 2011 Security Feature Bypass Vulnerability
vendor_msrc·2018-09-11·CVSS 7.5
CVE-2018-8474 [HIGH] Lync for Mac 2011 Security Feature Bypass Vulnerability
Lync for Mac 2011 Security Feature Bypass Vulnerability
Description: A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages. An attacker who successfully exploited this vulnerability could cause a targeted Lync for Mac 2011 user's system to browse to an attacker-specified website or automatically download file types on the operating system's safe file type list.
For an attacker to exploit the vulnerability, a specially crafted message needs to be sent to a targeted user. The targeted user does not need to take any actions after receiving the message.
FAQ: Where do I find the update for Lync for Mac 2011?
Microsoft is not planning on fixing this vulnerability in Microsoft Lync for Mac 2011. Microsoft recommends upgrading
No detection rules found.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/105268http://www.securitytracker.com/id/1041633https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8474https://www.exploit-db.com/exploits/45936/http://www.securityfocus.com/bid/105268http://www.securitytracker.com/id/1041633https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8474https://www.exploit-db.com/exploits/45936/
2018-09-13
Published