: Attackers use the extended MAPI property PidLidReminderFileParameter to specify a Universal Naming Convention (UNC) path pointing to a malicious SMB share.
: The exploit triggers automatically when the email is received and processed by the Outlook client, even if the user never opens or previews the message. Download 1676365588 zip
This flaw allows an attacker to steal —a user's encrypted credentials—simply by sending a specially crafted email. Download 1676365588 zip
