CVE-2019-1204

Name of the Vulnerable Software and Affected Versions Microsoft Outlook (affected versions not specified)

Description The issue is related to errors in processing incoming messages. An attacker could exploit this to gain elevated privileges by sending a specially crafted email to a victim, which would then attempt to open a pre-configured message store contained in the email. The attacker could force Outlook to load a local or remote message store over SMB. The vulnerability is addressed by ensuring Office fully validates incoming email formatting before processing message content.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.