Microsoft · Outlook · CVE-2019-1199
**Name of the Vulnerable Software and Affected Versions**
Microsoft Outlook (affected versions not specified)
**Description**
A remote code execution issue exists due to the software's failure to properly handle objects in memory. This could allow an attacker to run arbitrary code in the context of the current user. If the user has administrative rights, the attacker could take control of the system, install programs, view or modify data, or create new accounts. The vulnerability can be exploited by convincing a user to open a specially crafted file, either via email or by hosting it on a website. The attacker would need to entice the user to click a link and then open the file. The Preview Pane can be an attack vector in certain cases.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.