Outlook 2013 Security Update for December 2020

A Security Update has been released for Outlook 2013. It resolves the following vulnerability;

  • CVE-2020-17119: Microsoft Outlook Information Disclosure Vulnerability
    The type of information that could be disclosed if an attacker successfully exploited this vulnerability is uninitialized memory.
    Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited.
    The Preview Pane is not an attack vector.

View: Download information for KB4486732

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 2013 Click-To-Run and updates Outlook to version 15.0.5285.1000.