Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, go to the following Microsoft website:
This article announces the availability of an update for Windows Modern Mail. This update resolves the spoofing issue that is documented in Security Advisory 2819682.
For more information about Windows Modern Mail, go to the following Microsoft webpage:
What is the scope of the vulnerability?
This is a spoofing vulnerability.
What might an attacker use the vulnerability to do?
An attacker who successfully exploited this vulnerability could make a link to a malicious website seem to be a link to another, trusted website.
How could an attacker exploit the vulnerability?
An attacker could exploit the vulnerability by sending an email message that has specially formatted HTML.