CVE-2018-0850

Name of the Vulnerable Software and Affected Versions: Microsoft Outlook versions 2007 through 2016 Microsoft Office 2016 Click-to-Run

Description: The issue arises from insufficient validation of incoming message formats. An attacker could exploit this to force Outlook to load a local or remote message store over SMB.

Recommendations: For Microsoft Outlook versions 2007 through 2016, apply the recommended security update. For Microsoft Office 2016 Click-to-Run, apply the recommended security update. At the moment, there is no information about a newer version that contains a fix for this vulnerability.