Microsoft Outlook S/MIME ClearText Disclosure (CVE-2017-11776)

LOL! This was one of the comments and I just laughed out loud: CVE-2017-11776 ...guess Microsoft's Dept of Coding (re)hired Scooby and scrappy Doo again.

We discovered a vulnerability in Outlook’s S/MIME functionality. The short version: If you used Outlook’s S/MIME encryption in the past 6 months (at least, we are still waiting for Microsoft to release detailed information and update the blog) your emails might not have been encrypted as expected. In the context of encryption, this can be considered a worst-case bug.

This has been a rather unusual vulnerability discovery. Unlike other cases we kind of stumbled upon the first indications of this vulnerability by pure coincidence (we did not search for Outlook vulnerabilities). We knew something was seriously wrong when we noticed that the contents of S/MIME encrypted emails were shown in Outlook Web Access (OWA). 

Read more - Sure! Click Here.

Da Boss!

Website: Email: This email address is being protected from spambots. You need JavaScript enabled to view it.

Latest Content

Visit the Digitalsmind Video YouTube Page!

Did you know we have a video page on YouTube? 

Well... WE DO! 

Check us out! 

- Our Video page.