Get to know me better; I got interviewed by Office Insiders

News

As part of the Office Insider Spotlight series, I got interviewed by the people of the Office Insiders blog.

The Office Insiders blog is the official blog from Microsoft highlighting upcoming changes in the Office applications as part of a Microsoft 365 subscription.

As an active Office Insider, they thought it would be nice to catch up with me and asked me the following questions;

  • Tell us about why you love the Office Insider program.
  • What is something you’ve created because of the Office Insider program?
  • Tell us about your journey in tech.
  • What aspects of technology inspire you the most?
  • What is one word that best describes how you work?
  • Which superhero character do connect with in real life?
  • What movies or books or other forms of art inspire you the most?

Many thanks to Armelle O’Neal and Jerriann Sullivan of the Office Insiders blog for this opportunity and promoting the MVPs and Office Insiders.

View: Office Insider Spotlight: Robert Sparnaaij


CodeTwo

Edit the HTML source code while composing a message in Outlook

Edit HTML Code buttonWhen composing a message in the HTML format in Outlook, the HTML code is automatically generated by the WordHTML engine. Unfortunately, Outlook does not provide a direct way of editing this generated HTML code.

With the EditHTML macro from this guide you can edit or completely replace the HTML of a message you are composing. This makes it much easier to make specific modifications or use the HTML code that you’ve created in another HTML editor.

This way you can make sure that your carefully created design, like for a newsletter, isn’t being modified again by WordHTML and remains compatible with other mail clients.

Continue reading: Edit the HTML source code while composing a message in Outlook


Outlook 2016 / 2019 / 365 Update for October 2020

News

A new rollup update has been made available for all Click-to-Run installations of Outlook 2016, Outlook 2019 and Outlook as part of a Microsoft 365 subscription.

It contains 13 security updates for Access (1), Excel (3), Outlook (2), Word (1) and Office (6).

The Details about the Outlook vulnerabilities;

  • CVE-2020-16947: Microsoft Outlook Remote Code Execution Vulnerability
    A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
    To exploit the vulnerability, a user must open a specially crafted file with an affected version of Microsoft Outlook software. In an email attack scenario, an attacker could exploit the vulnerability by sending the specially crafted file to the user and convincing the user to open the file.
    Note that the Preview Pane is an attack vector for this vulnerability.
    The security update addresses the vulnerability by correcting how Microsoft Outlook handles files in memory.
  • CVE-2020-16949: Microsoft Outlook Denial of Service Vulnerability
    A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system.
    Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Outlook server.
    The security update addresses the vulnerability by correcting how Microsoft Outlook handles objects in memory.

In addition, it contains no documented non-security fixes for Outlook Current Version 2009 (but there were 3 fixes last week), 2 features and 15 fixes for Monthly Enterprise 2008 and 4 fixes for Semi-Annual (Preview) Version 2008. Most notable are;

  • Version 2008 – Create polls in Outlook with Quick Poll
    Easily create a poll, collect votes, and view results within an email. 
  • Version 2008 – New profile card for Outlook
    New profile card for Outlook including a better Organization view and matches the card style of Outlook Web.
  • Version 2009
    Addresses an issue that caused some users to observe Outlook unexpectedly starting in an offline state.
  • Version 2008
    Addresses an issue that caused users to be unable to close shared calendars by clicking on the “X” in the corner.
  • Version 2008
    Fixes an issue that caused users to see anomalies when using the compact view.
  • Version 2008
    Addressed an issue that caused meetings to fail to be removed from a manager’s calendar when declined by a delegate in some circumstances.

Based on your release channel, you’ll be updated to the following version;

  • Microsoft 365 Apps, Outlook 2016 Retail, Outlook 2019 Retail
    Version 2009 (Build 13231.20390)
  • Monthly Enterprise
    Version 2008 (Build 13127.20638)
    Version 2007 (Build 13029.20708)
  • Semi-Annual Enterprise (Preview)
    Version 2008 (Build 13127.20638)
  • Semi-Annual Enterprise
    Version 2002 (Build 12527.21236)
    Version 1908 (Build 11929.20966) 
  • Outlook 2019 Volume License
    Version 1808 (Build 10367.20048)

Note: Depending on your installation type, this update can be installed via the Update Now button in Outlook itself or the Microsoft Store. This update does not apply to msi-based installations of Office 2016.


Outlook 2016 (MSI) Security Update for October 2020

News

A Security Update has been released for Outlook 2016. It resolves the following vulnerability;

  • CVE-2020-16949: Microsoft Outlook Denial of Service Vulnerability
    A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system.
    Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Outlook server.
    The security update addresses the vulnerability by correcting how Microsoft Outlook handles objects in memory.

This update contains 4 additional fixes or improvements for non-security issues;

  • Fixes an issue that causes Outlook to intermittently crash when users interact with calendar items.
  • Fixes an issue to correctly block users from being able to forward multiple selected messages that have the “Do Not Forward” policy applied.
  • Fixes an issue in which the “LegacyExchangeDN” value for an email sender is preserved and displayed in the “From” field after a draft of the email is moved from a mailbox that has assistant permissions to the manager’s mailbox.
  • Fixes an issue that causes the computers of some users to fail when they connect through MAPI/HTTP.

View: Download information for KB4486671

Note: This update can be installed via Microsoft Update and updates Outlook to version 16.0.5071.1000. This update does not apply to Perpetual and Office 365 based installations of Office 2016.


Outlook 2013 Security Update for October 2020

News

A Security Update has been released for Outlook 2013. It resolves the following vulnerability;

  • CVE-2020-16949: Microsoft Outlook Denial of Service Vulnerability
    A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system.
    Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Outlook server.
    The security update addresses the vulnerability by correcting how Microsoft Outlook handles objects in memory.

View: Download information for KB4484524

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 2013 Click-To-Run and updates Outlook to version 15.0.5285.1000.


Outlook 2010 Security Update for October 2020

News

A Security Update has been released for Outlook 2010. It resolves the following vulnerability;

  • CVE-2020-16949: Microsoft Outlook Denial of Service Vulnerability
    A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system.
    Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Outlook server.
    The security update addresses the vulnerability by correcting how Microsoft Outlook handles objects in memory.

Important!
This is the last scheduled Security Update for Outlook 2010 as it has now reached the end date for Extended Support. It is highly recommended to update to a later version of Outlook or an alternative mail client as soon as possible.

View: Download information for KB4486663

Note: This update can be installed via Microsoft Update and updates Outlook to version 14.0.7261.5000.


Exchange 2019, 2016 and 2013 Security Updates for October 2020

News

Security updates have been released for Exchange 2013, Exchange 2016 and Exchange 2019.

  • CVE-2020-16969: Microsoft Exchange Information Disclosure Vulnerability
    An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who successfully exploited the vulnerability could use this to gain further information from a user.
    To exploit the vulnerability, an attacker could include specially crafted OWA messages that could be loaded, without warning or filtering, from the attacker-controlled URL. This callback vector provides an information disclosure tactic used in web beacons and other types of tracking systems.
    The security update corrects the way that Exchange handles these token validations.

View: Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: October 13, 2020
Download: Security Update For Exchange Server 2019 CU7 (KB4581424)
Download: Security Update For Exchange Server 2019 CU6 (KB4581424)
Download: Security Update For Exchange Server 2016 CU18 (KB4581424)
Download: Security Update For Exchange Server 2016 CU17 (KB4581424)
Download: Security Update For Exchange Server 2013 CU23 (KB4581424)


Schedule a recurring email with Outlook and PowerShell

Recurring Email buttonDo you need to send the same emails on a recurring basis like daily, weekly or monthly? Sending out reminders, forwarding reports or the latest offers and prices can be a tedious task.

Outlook doesn’t natively have this feature but with some PowerShell code or add-in, it can be done quite easily .

The PowerShell code in this guide allows you to send an email template, that you’ve created in Outlook. Optionally, it can look for a specific file to attach at the moment of sending to make sure you are always sending the latest version of the file. This guide contains step-by-step instructions to fully automate this process via the Windows Task Scheduler.

Scripts aren’t your thing? We’ve got you covered with some recommended 3rd party add-ins that can bring this functionality to Outlook as well.

Continue reading: Schedule a recurring email with Outlook and PowerShell


Outlook for Microsoft 365 Apps Feature Update for September 2020

News

Right before the end of September Microsoft released the September feature update of Outlook for Microsoft 365 Apps in the Current Channel (previously known as the Office 365 Monthly Channel).

It comes with 2 new features for Outlook and 1 highlighted fix. It also includes the 2 fixes included in last week’s bug fix for Version 2008. The new features and fixes are listed below;

  • Auto-Expanding Online Archive Search
    Enabling auto-expanding Online Archive Search
  • New profile card for Outlook
    New profile card for Outlook including a better Organization view and matches the card style of Outlook Web.
  • Addresses an issue that caused some automatically generated emails to be sent with a blank body when the subject line is blank.
  • Addresses an issue that caused users to be unable to close shared calendars by clicking on the “X” in the corner.
  • Addresses a performance issue with attachment upload.

Note: Depending on your installation type, this update can be installed via the Update Now button in Outlook or the Microsoft Store and updates Outlook to: Version 2009 (Build 13231.20262).


Exchange Server 2019 Capacity Calculator

Exchange Calculator buttonThe Exchange Server 2019 Capacity Calculator allows you to calculate the hardware and virtual system requirements for the servers handling the Exchange Server Roles within your Exchange 2019 environment.

The latest version of the calculator is included with each Exchange Server 2019 Cumulative Update but also available as a separate download.

The calculator is provided as an Excel document with various macros. For the best experience, it is recommended to use it with Excel as part of Microsoft Office Professional Plus 2019 or Microsoft 365 Apps for Enterprise/Business.

Download: Exchange Server 2019 Capacity Calculator
More info: Announcing The Exchange Server 2019 Sizing Calculator