Microsoft Outlook Mailto Parameter Quoting Zone Bypass Vulnerability

Microsoft Outlook Mailto Parameter Quoting Zone Bypass Vulnerability

It is possible to influence Outlook invocation parameters by including a '&quot;' string in the mailto URI.

The following proof of concept is available:

/data/vulnerabilities/exploits/outlooksploit.html