Sinokap
Menu
Get In Touch
July 28, 2023

Outlook blocks opening FQDN and IP address hyperlinks after installing protections for Microsoft Outlook Security Feature Bypass Vulnerability released July 11, 2023

E-Mail:

consulting@sinokap.com
Site Link:

https://it-support-china.com/
Share:
Weixin

Microsoft released security update KB5002427 for Outlook 2016 on July 11 and security update KB5002432 for Outlook 2013. However, users reported that after installation, the released Microsoft Outlook security feature bypasses the protection of the vulnerability and prevents the opening of FQDN and IP address hyperlinks. Microsoft released the resolution in the latest official log.

Issue

When you click on links in emails in Outlook Desktop where the path is to a fully qualified domain name (FQDN) or IP address you may see the following:

In response to this problem, Microsoft proposed a temporary solution in the recently released official update log. Before proceeding, make sure that the FQDN or IP address added to Trusted Sites is a valid URL path for your company or network. Because this workaround may make the computer or network more vulnerable to attack by malicious users or by malicious software such as viruses.

Resolution

1、Go to Windows Settings and search for and open Internet Options.

2、Click the Security tab, then select Trusted Sites.

3、Add the URL, UNC, FQDN path that you want to allow to “Add this website to the zone“.

For example, add “file://server.usa.corp.com”

Note: If the entry you wish to add does not explicitly start with ‘https:’, you must first uncheck the ‘Require server verification (https) for all sites in this zone’ checkbox before it can be saved.

GPO: User Configuration

Policy: \\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Site to Zone Assignment List

To avoid policy or zone processing failures as a result of incorrect syntax, it is highly advisable to first test the desired policy entry in the Internet Options UI:

The Group Policy zone management interface does not provide input validation of entered values.  By leveraging the tip above, administrators can ensure their policy values will be considered valid before deploying them broadly.

Table of Contents

What We Provide
IT Outsourcing Service
Managed IT Service
IT Infrastructure Services
Office Move & Relocation
Network Optimization
VPN Service Support
Data Recovery & Erase
Server Management
Sinokap Tags
ChatGPT Chrome Cisco DNS Employee Training Free Tools IT Solution KDB Microsoft Network News OneDrive OneNote Online Meeting Outlook PC PDF XChange Editor Remote Work SharePoint Teams Technology Troubleshooting WeChat Windows Work Efficiency

How can we help you?

Call Us, Write Us, Or Knock On Our Door. We are here to help. Thanks for contacting us!

 

Contact Us

Recent Posts

How to export voting results from Outlook to Excel?

How to export voting results from Outlook to Excel?

Read more
How to Set a Password to Protect Your Documents

How to Set a Password to Protect Your Documents

Read more

Discover more from Sinokap

Subscribe now to keep reading and get access to the full archive.

Continue reading