The Latest ‘Critical’ Microsoft Outlook Vulnerability: 5 Things To Know
Security researchers say the vulnerability is unusually dangerous and should be prioritized for patching.
The vulnerability affects all supported versions of Outlook for Windows, according to Microsoft. Because browser-based Outlook and Microsoft 365 don’t support NTLM, they’re not vulnerable to the issue, according to Hammond. Outlook versions for Mac, iOS and Android are also not impacted by the issue, Microsoft said.
Easy To Exploit
The vulnerability has been rated as “critical” severity by Microsoft and is also considered a major concern because of how simple it is for an attacker to exploit. Dominic Chell, owner of consultancy MDSec, disclosed in a post the steps needed to exploit the Outlook flaw, concluding that the vulnerability is “incredibly easy to exploit” and that it should be prioritized for patching.