Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, go to the following Microsoft website:


This article announces the availability of an update for Windows Modern Mail. This update resolves the spoofing issue that is documented in Security Advisory 2819682.

For more information about Windows Modern Mail, go to the following Microsoft webpage:


What is the scope of the vulnerability?
This is a spoofing vulnerability.

What might an attacker use the vulnerability to do?
An attacker who successfully exploited this vulnerability could make a link to a malicious website seem to be a link to another, trusted website. 

How could an attacker exploit the vulnerability?
An attacker could exploit the vulnerability by sending an email message that has specially formatted HTML.

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Thank you for your feedback!