From One Vulnerability to Another: Outlook Patch Analysis Reveals Important Flaw in Windows API … An unauthenticated attacker on the internet could use the vulnerability to coerce an Outlook client to connect to an attacker-controlled server. This results in NTLM credentials theft. It is a zero-click vulnerability, meaning it can be triggered with no user interaction … — www.akamai.com/blog/se…dows-api