Outlook 2016 (MSI) Security Update for February 2024

A Security Update has been released for Outlook 2016. It resolves the following vulnerability;

  • CVE-2024-21378: Microsoft Outlook Remote Code Execution Vulnerability
    • This vulnerability is currently not publicly disclosed nor exploited.
    • Exploitation of the vulnerability requires that a user open a specially crafted file.
    • The Preview Pane is an attack vector.
    • The Exploitability Assessment is rated: Exploitation More Likely.

View: Download information for KB5002543

Note: This update can be installed via Microsoft Update and updates Outlook to version 16.0.5430.1000. This update does not apply to Perpetual (Retail) and Microsoft 365 based installations of Office 2016.