A Security Update has been released for Outlook 2016. It resolves the vulnerability mentioned in CVE-2018-0791, which could allow remote code execution via a specially crafted Office file.
Additional fixes in this update;
- When you select multiple attachments and try to cancel one of the attachments, all the other attachments are cancelled.
- Some attachments are not removed when you forward mails that contain inline images and you check the “Read all mails as Plain Text” check box.
Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 16.0.4639.1000 (msi-based installation) or 16.0.8730.2175 (Office 365 based installation) or 16.0.8431.2153 (Office 365 Semi-Annual Channel installation) or 16.0.8201.2217 (Deferred Channel).