Outlook 2016 Security Update for July 2017

News

A Security Update has been released for Outlook 2016. It resolves the vulnerabilities mentioned in CVE-2017-8571, CVE-2017-8572, and CVE-2017-8663 which could allow remote code execution if a user opens a specially crafted Office file or email message.

It also solves the issues introduced in the June update (KB3191932) where attachments with certain characters in their name got fully blocked.

Office 365 users (Current Channel) will also get 2 new features;

  • Downloading cloud attachments
    When you save or drag and drop OneDrive attachments to your computer, we download the file for you.
  • Helpful sounds improve accessibility
    Turn on audio cues to guide you as you work. Find it in File > Options > Ease of Access.

View: Download information for KB4011052

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 16.0.4573.1001 (msi-based installation) or 16.0.8326.2058 (Office 365 based installation) or 16.0.7766.2099 (Office 365 Deferred Channel installation).


MAPILab
Use "4PM76A8" to get a discount when ordering!

Outlook 2013 Security Update for July 2017

News

A Security Update has been released for Outlook 2013. It resolves the vulnerabilities mentioned in CVE-2017-8571, CVE-2017-8572, and CVE-2017-8663 which could allow remote code execution if a user opens a specially crafted Office file or email message.

It also solves the issues introduced in the June update (KB3191938) where attachments with certain characters in their name got fully blocked.

View: Download information for KB4011078

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 15.0.4953.1001.


Outlook 2010 Security Update for July 2017

News

A Security Update has been released for Outlook 2010. It resolves the vulnerabilities mentioned in CVE-2017-8571, CVE-2017-8572, and CVE-2017-8663 which could allow remote code execution if a user opens a specially crafted Office file or email message.

It also solves the issues introduced in the June update (KB3203467) where attachments with certain characters in their name got fully blocked.

View: Download information for KB2956078

Note: This update can be installed via Microsoft Update and updates Outlook to version 14.0.7187.5000.


Outlook 2007 Security Update for July 2017

News

A Security Update has been released for Outlook 2007. It resolves the vulnerabilities mentioned in CVE-2017-8571, CVE-2017-8572, and CVE-2017-8663 which could allow remote code execution if a user opens a specially crafted Office file or email message.

It also solves the issues introduced in the June update (KB3191898) where attachments with certain characters in their name got fully blocked.

View: Download information for KB3213643

Note: This update can be installed via Microsoft Update and updates Outlook to version 12.0.6774.5000.


Exchange 2010 SP3 Rollup 18

News

Update Rollup 18 for Exchange 2010 Service Pack 3 is now available for direct download. It contains 1 documented new security and all previously released fixes and security updates for Exchange 2010 SP3. Note that mainstream support for Exchange 2010 has already ended.

This security update resolves the vulnerabilities mentioned in CVE-2017-8621, CVE-2017-8559 and CVE-2017-8560. These vulnerabilities works via Outlook Web Access (OWA) and could allow elevation of privilege or spoofing in Microsoft Exchange Server if an attacker sends an email that has a specially crafted attachment to a vulnerable Exchange server.

View: Description of the security update for Microsoft Exchange: July 11, 2017
Download: Update Rollup 18 For Exchange 2010 SP3 (KB4018588)


Outlook 2010 Update for July 2017

News

A Rollup Update has been released for Outlook 2010. This is a non-security update which fixes the 3 attachment issues that were introduced with the June 2017 update (KB3203467);

  • When you open an attachment whose file name includes an ellipsis (…) or an exclamation point (!), the files are blocked and you receive a warning message.
  • If an email message includes an attached email message, and the attached email message’s subject line includes an unsafe file name extension, the email attachment is blocked for recipients.
  • You receive an error message when you open attachments in an email message, a contact, or a task that’s formatted as Rich Text.

Update July 11:
Due to new issues found with this update, it is no longer available. An updated fix or a completely new fix will be released soon.

View: Download information for KB4011042

Note: This update can be installed via Microsoft Update and updates Outlook to version 14.0.7183.5002.