It has just come to our attention that there are numerous security vulnerabilities stemming from Microsoft Outlook 2007. Many people, for both personal and business reasons, utilize the Outlook 2007 platform to receive and compose emails on a daily basis. However, in light of the information recently shared by CVE Details, MeloTel strongly suggests that all users protect their sensitive emails, calendars and contacts by removing Outlook 2007 from their PCs immediately.
Here are twelve reasons to stop using Microsoft Outlook 2007 right now:
1. A remote code execution vulnerability exists in the way Microsoft Outlook software parses specially crafted email messages. This is also known as “Microsoft Office Outlook Memory Corruption Vulnerability”.
2. A security feature bypass vulnerability exists in Microsoft Office software when it improperly handles the parsing of file formats. This is also known as “Microsoft Office Outlook Security Feature Bypass Vulnerability”.
3. Double free vulnerability in Microsoft Outlook 2007 allows remote attackers to execute arbitrary code by including many nested S/MIME certificates in an e-mail message. This is also known as “Message Certificate Vulnerability”.
4. Microsoft Excel 2007 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document. This is also known as “Microsoft Office Memory Corruption Vulnerability”.
5. Microsoft Outlook 2007 does not properly expand metadata contained in S/MIME certificates, which allows remote attackers to obtain sensitive network configuration and state information via a crafted certificate in an e-mail message. This is also known as “S/MIME AIA Vulnerability”.
6. Microsoft Outlook 2007 allows remote attackers to bypass the Office Protected View via a specially crafted document. This is also known as “Microsoft Office Security Feature Bypass Vulnerability”.
7. Microsoft Outlook 2007, as packaged in Microsoft Office, allows a remote code execution vulnerability due to the way Microsoft Outlook parses specially crafted email messages. This is also known as “Microsoft Office Outlook Memory Corruption Vulnerability”.
8. Microsoft Outlook 2007, as packaged in Microsoft Office, allows a security feature bypass vulnerability due to the way that it handles input. This is also known as “Microsoft Office Outlook Security Feature Bypass Vulnerability”.
9. Microsoft Outlook 2007, as packaged in Microsoft Office, allows an information disclosure vulnerability due to the way that it discloses the contents of its memory. This is also known as “Microsoft Office Outlook Information Disclosure Vulnerability”.
10. Microsoft Outlook 2007 for Mac does not properly implement RFC 2046, which allows remote attackers to bypass virus or spam detection via crafted MIME data in an e-mail attachment. This is also known as “Microsoft Office Spoofing Vulnerability”.
11. Microsoft Outlook 2007 allows a remote code execution vulnerability due to the way email messages are parsed. This is also known as “Microsoft Outlook Remote Code Execution Vulnerability”.
12. There are much better options than Microsoft Outlook 2007. You can install Microsoft’s Office 365 for under $13.00 a month for up to five different PCs. “Office 365 is built for your business,” explains their website, “It’s the Office you know, plus tools to help you work better together, so you can get more done — anytime, anywhere.”
As a result of these overwhelming vulnerabilities, MeloTel will no longer support our email solutions distributed on Microsoft Outlook 2007. If you have any questions about how you can upgrade your software, please don’t hesitate to contact us at 1-888-MELOTEL or use the Live Chat feature on our website!