A Security Update has been released for Outlook 2016. It resolves the vulnerabilities mentioned in CVE-2017-8571, CVE-2017-8572, and CVE-2017-8663 which could allow remote code execution if a user opens a specially crafted Office file or email message.
It also solves the issues introduced in the June update (KB3191932) where attachments with certain characters in their name got fully blocked.
Office 365 users (Current Channel) will also get 2 new features;
- Downloading cloud attachments
When you save or drag and drop OneDrive attachments to your computer, we download the file for you.
- Helpful sounds improve accessibility
Turn on audio cues to guide you as you work. Find it in File > Options > Ease of Access.
View: Download information for KB4011052
Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 16.0.4573.1001 (msi-based installation) or 16.0.8326.2058 (Office 365 based installation) or 16.0.7766.2099 (Office 365 Deferred Channel installation).