The vulnerability tracked as CVE-2024-21413 impacts Microsoft Outlook mail client. It allows an attacker to send a crafted email to its target that contains a malicious Moniker link. The mail client will download the attacker-controlled file through the link and execute it without security check
Therefore will target’s local NTLM credentials be stolen. Moreover the file execution enables the attacker to leverage other vulnerabilities to achieve RCE on the target
Stormhield Network Security (SNS) appliance protects you from that attack, thanks to dedicated IPS signatures. To work efficiently on SMTPS traffic, it must be decrypted.
| ID | Name |
| smtp:client.15 | eMail : Microsoft Outlook malicious Moniker link (CVE-2024-21413) |
| http:server.15 | eMail : Microsoft Outlook malicious Moniker link (CVE-2024-21413) |