A Security Update has been released for Outlook 2016 Retail, Outlook 2019 and Office 365. It resolves the following vulnerability;
- CVE-2019-0559: Microsoft Outlook Information Disclosure Vulnerability
An attacker who successfully exploited this vulnerability could gather information about the victim. An attacker could exploit this vulnerability by sending a specially crafted email to the victim.
Based on your release channel, you’ll be updated to the following version;
- Office 365, Outlook 2016 Retail, Outlook 2019 Retail
Version 1812 (Build 11126.20196) - Outlook 2019 Volume License
Version 1808 (Build 10340.20017) - Office 365 Semi Annual Channel
Version 1808 (Build 10730.20264)
Version 1803 (Build 9126-2336)
Version 1708 (Build 8431.2366)
Note: Depending on your installation type, this update can be installed via the Microsoft Store or the Update Now button in Outlook itself. This update does not apply to msi-based installation of Office 2016.
