{"id":105910,"date":"2025-05-14T11:49:40","date_gmt":"2025-05-14T11:49:40","guid":{"rendered":"https:\/\/cybersecuritynews.com\/?p=105910"},"modified":"2025-08-14T09:21:50","modified_gmt":"2025-08-14T09:21:50","slug":"outlook-remote-code-execution-vulnerability","status":"publish","type":"post","link":"https:\/\/cybersecuritynews.com\/outlook-remote-code-execution-vulnerability\/","title":{"rendered":"Outlook RCE Vulnerability Allows Attackers to Execute Arbitrary Code"},"content":{"rendered":"\n

Microsoft addressed a significant security flaw in its Outlook email<\/a> client during the May 2025 Patch Tuesday, releasing fixes for 72 vulnerabilities across its ecosystem. <\/p>\n\n\n\n

Among these, CVE-2025-32705-a remote code execution (RCE) vulnerability in Microsoft Outlook has drawn attention due to its potential for local code execution via an out-of-bounds<\/a> read weakness.<\/p>\n\n\n\n

Outlook Out-of-Bounds Read Flaw (CVE-2025-32705)<\/strong><\/h2>\n\n\n\n

The vulnerability, rated Important with a CVSSv3 score of 7.8, stems from improper memory handling in Outlook. <\/p>\n\n\n\n

An attacker could exploit CVE-2025-32705 by sending a specially crafted file to the target user via email or other means. <\/p>\n\n\n\n

Once the user opens the malicious file in an affected version of Microsoft Outlook<\/a>, the out-of-bounds read error can be triggered, allowing the attacker to execute arbitrary code on the local system. <\/p>\n\n\n\n

This could lead to complete system compromise, data theft, or further malware deployment.<\/p>\n\n\n\n

Notably, the Outlook Preview Pane is not an attack vector for this vulnerability, so simply previewing an email will not trigger the exploit. The user must actively open the malicious file for the attack to succeed.<\/p>\n\n\n\n

Microsoft credited Haifei Li from EXPMON for discovering the vulnerability and recognized the broader security community\u2019s role in coordinated vulnerability disclosure.<\/p>\n\n\n\n

Risk Factors<\/strong><\/td>Details<\/strong><\/td><\/tr>
Affected Products<\/td>Microsoft Office LTSC 2021 (32\/64-bit), LTSC 2024 (32\/64-bit), Microsoft 365 Apps (32\/64-bit)<\/td><\/tr>
Impact<\/td>Remote Code Execution (Arbitrary code execution via local attack vector)
<\/td><\/tr>
Exploit Prerequisites<\/td>User must open a specially crafted malicious file in Microsoft Outlook<\/td><\/tr>
CVSS 3.1 Score<\/td>7.8 (Important)<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

Microsoft assigned itself as the CNA (CVE Numbering Authority) for this vulnerability and promptly released security updates as part of the May 2025 Patch Tuesday. <\/p>\n\n\n\n

The updates<\/a> cover multiple editions of Microsoft Office LTSC 2021 and 2024, as well as Microsoft 365 Apps for Enterprise, for both 32-bit and 64-bit systems.<\/p>\n\n\n\n

The affected products and update links include:<\/p>\n\n\n\n