Remote Code Execution bug on Microsoft Outlook App - POC Released
A Remote code execution bug on Microsoft Outlook app. Update now.
This critical RCE bug which is identified as CVE-2019-1105 has been discovered by security researcher Bryan Appleby of F5 Networks, which he had reported to Microsoft security team on December 2018. On the blog-post, Bryan have disclosed all the technical details of the bug with the Proof-of-Concepts.
This bug allow him to steal data from the app including their cookies, tokens and even some contents of their email inbox.
So as you can find that this is very serious issue, so we recommend all users to immediately update your Outlook app from playstore.