CVE-2013-3905 in Outlook
摘要
由 MITRE
Microsoft Outlook 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT does not properly expand metadata contained in S/MIME certificates, which allows remote attackers to obtain sensitive network configuration and state information via a crafted certificate in an e-mail message, aka "S/MIME AIA Vulnerability."
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.