A Security Update has been released for Outlook 2013. It resolves the vulnerabilities mentioned in CVE-2018-0850 and CVE-2018-0852, which could allow remote code execution via a specially crafted Office file. It also contains 6 nonsecurity improvements and fixes.
Most notable additional fixes in this update;
- Allows you to disable Exchange Active Sync (EAS) account creation via the EnableEASAccountCreation Registry value.
- You see that the location disappears from meeting requests when you add recipients as attendees.
- Outlook 2013 may crash when you change to Calendar view or you work in calendar.
View: Download information for KB4011697
Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 15.0.5007.1000.