|Title:||Microsoft Yammer Desktop Remote Code Execution Vulnerability (Windows)|
|Summary:||This host is running Microsoft Yammer Desktop; and is prone to remote code execution vulnerability|
This host is running Microsoft Yammer Desktop
and is prone to remote code execution vulnerability
The flaw exists due to the loading of
arbitrary content in the application.To exploit this vulnerability the attacker
has to convince the victim to click on a special URL in the application which
redirects to a compromised webpage. The attacker can gain control of the machine
upon loading of content from the webpage.
Successful exploitation will allow an attacker
to run arbitrary code in the context of the current user
Microsoft Yammer Desktop versions prior to 2.0.0 on Windows
Upgrade to Microsoft Yammer Desktop 2.0.0 or later.
For updates refer to Reference links.
Common Vulnerability Exposure (CVE) ID: CVE-2018-8569|
BugTraq ID: 105681
|Copyright||Copyright (C) 2018 Greenbone Networks GmbH|
|This is only one of 71225 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.