Microsoft Fixes a Fix for Outlook

Friday, November 13, 2015 @ 04:11 PM gHale

Microsoft had to send out another security patch after it issued one Tuesday as part of its monthly update cycle.

It appears after Microsoft “fixed” a vulnerability, its users said the fix caused the Outlook email client to crash.

Microsoft’s Security Updates
Subsystem can Bypass EMET Security
Unsupported ICS: Not an Easy Upgrade
Age of New and Different

Windows users complained on Microsoft’s support forums and elsewhere that Outlook 2010 and 2013 had been crashing when viewing HTML emails. Researchers determined the cause was KB3097877 on Windows 7 and in some cases possibly KB3105213 on Windows 10.

KB3097877 was a portion of the MS15-115 critical bulletin, which fixed seven Windows vulnerabilities that could end up leveraged for remote code execution and to bypass security features. Microsoft released an updated version of the bulletin Wednesday to address the Outlook crash issue.

“[MS15-115] bulletin revised to inform customers running Windows 7 that the 3097877 update has been re-released to address an issue that caused crashes for some customers when they viewed certain emails. Customers who previously installed update 3097877 should reinstall the update to correct this known issue,” Microsoft said.

Most of the affected users did confirm removing KB3097877 fixes the issue on Windows 7. Others said the reissued update no longer causes Outlook to crash.