Outlook 2013 Security Update for February 2018

News

A Security Update has been released for Outlook 2013. It resolves the vulnerabilities mentioned in CVE-2018-0850 and CVE-2018-0852, which could allow remote code execution via a specially crafted Office file. It also contains 6 nonsecurity improvements and fixes.

Most notable additional fixes in this update;

  • Allows you to disable Exchange Active Sync (EAS) account creation via the EnableEASAccountCreation Registry value.
  • You see that the location disappears from meeting requests when you add recipients as attendees.
  • Outlook 2013 may crash when you change to Calendar view or you work in calendar.

View: Download information for KB4011697

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 15.0.5007.1000.


 


CodeTwo

Report Office Store Web Add-ins (apps) usage in your organization

Office Store buttonDo you need an overview of which Outlook Store apps are being used in your Exchange organization or Office 365 tenant?

Unfortunately, there is no direct way to report this but with a PowerShell one-liner and the Excel PivotTable and PivotChart feature, you can quickly create a nice looking report with an interactive table and chart.

Continue reading: Report Office Store Web Add-ins (apps) usage in your organization


Color Code your Emails, Calendar, Contacts or Tasks automatically with Conditional Formatting

Conditional Formatting buttonThe Conditional Formatting feature in Outlook allows you to get organized by automatically color coding your Emails, Calendar items, Contacts and Tasks without the need to apply a Color Category to it or move them to different folders.

The color coding isn’t just intended to emphasize certain emails but it can also be used to deemphasize certain emails such as newsletters or emails you are only a CC or BCC recipient of.

You may actually already know Conditional Formatting without realizing it as it is for instance also being used to:

  • Show unread emails in a blue and bold font.
  • Show expired emails and completed tasks in a grey and strikethrough font.
  • Show overdue emails and tasks in a red font.

The “Conditional Formatting” feature may look complex at first but creating color coding rules is actually fairly easy and quite powerful when used the right way.

This guide will help you on your way to get yourself familiar with the Conditional Formatting options with 8 color coding examples which might be useful to you as well.

Conditional Formatting usage in the Message List.
Conditional Formatting usage in the Message List.

Continue reading: Color Code your Emails, Calendar, Contacts or Tasks automatically with Conditional Formatting


Outlook 2016 Security Update for January 2018

News

A Security Update has been released for Outlook 2016. It resolves the vulnerability mentioned in CVE-2018-0791, which could allow remote code execution via a specially crafted Office file.

Additional fixes in this update;

  • When you select multiple attachments and try to cancel one of the attachments, all the other attachments are cancelled.
  • Some attachments are not removed when you forward mails that contain inline images and you check the “Read all mails as Plain Text” check box.

View: Download information for KB4011626

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 16.0.4639.1000 (msi-based installation) or 16.0.8730.2175 (Office 365 based installation) or 16.0.8431.2153 (Office 365 Semi-Annual Channel installation) or 16.0.8201.2217 (Deferred Channel).


Outlook 2013 Security Update for January 2018

News

A Security Update has been released for Outlook 2013. It resolves the vulnerability mentioned in CVE-2018-0791, which could allow remote code execution via a specially crafted Office file.

Additional fixes in this update;

  • 3rd-party MAPI providers may be blocked despite being in the Outlook profile.
  • When you send an email message from Outlook.com to a recipient outside of Office 365, the recipient always gets a winmail.dat attachment in the message.

View: Download information for KB4011637

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 15.0.4989.1000.


Outlook 2010 Security Update for January 2018

News

A Security Update has been released for Outlook 2010. It resolves the vulnerability mentioned in CVE-2018-0791, which could allow remote code execution via a specially crafted Office file.

Additionally, this update fixes an issue where 3rd-party MAPI providers may be blocked despite being in the Outlook profile.

View: Download information for KB4011273

Note: This update can be installed via Microsoft Update and updates Outlook to version 14.0.7192.5000.


Exchange 2016 CU8

News

Cumulative Update 8 for Exchange 2016 is now available for direct download. It contains 6 documented new fixes or improvements, and all previously released fixes and security updates for Exchange 2016.

  • .NET Framework 4.7.1 is now supported.
  • KB4056329 Can’t access EWS from Outlook/OWA add-ins via makeEwsRequestAsync in Exchange Server 2016 and Exchange Server 2013
  • KB4054516 “Your request can’t” error when accessing an archive mailbox via OWA in Exchange Server 2016
  • KB4055953 The recipient scope setting doesn’t work for sibling domains in Exchange Server 2016
  • KB4055435 No MAPI network interface is found after you install Exchange Server 2016 CU7
  • KB4056609 Event ID 4999 and mailbox transport delivery service does not start after you install Exchange Server 2016 CU7
  • KB4045655 Description of the security update for Microsoft Exchange: December 12, 2017
  • KB4057248 Many Watson reports for StoragePermanentException in Exchange Server 2016

This release includes no new updates to the Active Directory Schema.

Download: Cumulative Update 8 for Exchange Server 2016 (KB4035145)
Download: Exchange Server 2016 CU8 UM Language Packs
View: Description of Cumulative Update 8 for Exchange Server 2016
View: Blog post of the Exchange Team about CU8 for Exchange Server 2016


Exchange 2013 CU19

News

Cumulative Update 19 for Exchange 2013 is now available for direct download. It contains 6 documented new fixes or improvements, and all previously released fixes and security updates for Exchange 2013.

  • .NET Framework 4.7.1 is now supported.
  • KB4046316 MAPI over HTTP can’t remove client sessions timely if using OAuth and the resource has a master account in Exchange Server 2013
  • KB4046205 W3wp high CPU usage in Exchange Server 2013
  • KB4046182 Event ID 4999 or 1007 if diagnostics service crashes repeatedly in Exchange Server 2013
  • KB4056329 Can’t access EWS from Outlook/OWA add-ins via makeEwsRequestAsync in Exchange Server 2016 and Exchange Server 2013
  • KB4045655 Description of the security update for Microsoft Exchange: December 12, 2017

This release includes no new updates to the Active Directory Schema.

Download: Cumulative Update 18 for Exchange Server 2013 (KB4022631)
Download: Exchange Server 2013 CU19 UM Language Packs
View: Description of Cumulative Update 19 for Exchange Server 2013
View: Blog post of the Exchange Team about CU19 for Exchange Server 2013