Microsoft has issued a security alert warning users about a critical vulnerability in the Outlook email client that hackers can exploit to distribute malware. The vulnerability, CVE-2025-21298, allows attackers to execute remote code on a victim's machine by sending specially crafted emails. Microsoft has released a patch for the issue and urges users to apply it immediately. In the meantime, users are advised to view emails in plain text and restrict NTLM traffic.
In a security alert, Microsft warned users how easy it is for hackers to distribute malware using their Outlook email client. Microsoft has already released a patch for the CVE-2025-21298 user-after-free vulnerability and urges users to apply it immediately.
Microsoft gave the vulnerability a severity score of 9.8 since it uses freed memory and corrupts valid data, or parcels out malware remotely. This bug is in the Windows Object Linking and Embedding function, allowing you to embed and link to documents and other objects, such as adding an Excel chart to a Word document. It’s so dangerous that you can become infected by previewing the specially crafted email.
Recommended Videos Microsoft said in the security warning, “Exploitation of the vulnerability might involve either a victim opening a specially crafted email with an affected version of Microsoft Outlook software, or a victim’s Outlook application displaying a preview of a specially crafted email. This could result in the attacker executing remote code on the victim’s machine.”
If you can’t apply the patch at the moment, Microsoft encourages you to apply tips such as viewing your emails in large LAN networks as plain text and turning off or restricting NTLM traffic altogether. What happens when you view your emails in plain text? Basically, all animation, images, and different fonts are removed. Your emails won’t look as stylish when viewing them in plain text, but this way, you can avoid loss of customers, business disruptions, and possibly regulatory fines.
No app is perfect and you’ll come across issues sooner or later. Even Outlook has common problems but if your facing some basic issues, we’ve got you covered on how to fix them. This isn’t the first major issue Outlook has faced with hackers being able to view emails a while back.
CYBERSECURITY MALWARE OUTLOOK MICROSOFT VULNERABILITY
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Microsoft Ends Support for Office 2019, What Does It Mean for Outlook Users?This article addresses concerns raised by a reader about the end of support for Microsoft Office 2019, including Outlook 2019. It explains the implications of this decision for users, particularly regarding email functionality and security. The article clarifies that while users can continue using Outlook 2019 after the support cut-off date, there may be future compatibility issues with email servers and security updates.
Read more »
FBI Warns Gmail, Outlook, Apple Mail Users—Check 3 Things To Stop AttacksFor email users, ‘tis the season to be worried—here’s what you need to do.
Read more »
FBI Warns Gmail, Outlook, Apple Mail Users—Check 3 Things To Stop AttacksFor email users, ‘tis the season to be worried—here’s what you need to do.
Read more »
Microsoft Warns Millions Of Windows Users—Change Your Browser NowUsers told to make change as attacks underway—here’s what you need to know.
Read more »
Microsoft Warns Windows Users—Do Not Update Your PC This WayThis is how not to update your PC—according to Microsoft.
Read more »
Shell Cuts LNG Production Outlook, Warns of Lower Trading ResultsShell reduced its LNG production forecast for the fourth quarter of 2024 and anticipates weaker trading results for its chemicals and oil products division.
Read more »