Full Report
Microsoft has fixed a major bug preventing Microsoft 365 users from launching the classic Outlook email client on Windows systems. [...]
Analysis Summary
# Vulnerability: Classic Outlook Launch Failure in Microsoft 365
## CVE Details
- CVE ID: Not explicitly provided in the article (Issue described is a bug fix, not a CVE assigned vulnerability)
- CVSS Score: N/A
- CWE: N/A
## Affected Systems
- Products: Classic Outlook email client (part of Microsoft 365)
- Versions: Unspecified versions utilizing Microsoft 365 connectivity.
- Configurations: Users attempting to launch the classic Outlook client on Windows systems, often related to user mailboxes and Exchange Online accounts.
## Vulnerability Description
A significant bug prevented Microsoft 365 users from launching the classic Outlook email client on Windows. Affected users encountered error messages such as "the app cannot be started," "the Outlook window cannot be opened," or "the attempt to log on to the Exchange account has failed." Microsoft confirmed the issue was often related to user mailboxes.
## Exploitation
- Status: Not applicable (This describes a software bug fixed by the vendor, not an actively exploited vulnerability with public disclosure)
- Complexity: N/A
- Attack Vector: N/A
## Impact
- Confidentiality: Potential temporary denial of access to mailboxes.
- Integrity: Potential temporary disruption to email operations.
- Availability: **High**, as the service (classic Outlook) became completely unavailable to affected users.
## Remediation
### Patches
- Microsoft has implemented service-side changes and monitoring is underway to confirm the issue is fully mitigated. Specific patch versions for the desktop client are not detailed, as the resolution appears to be a backend service update.
### Workarounds
1. **Temporary Switch:** Users unable to open classic Outlook were advised to switch to Outlook Web Access (OWA) or the new Outlook for Windows.
2. **General Troubleshooting (For persistent startup issues):**
* Start Outlook in safe mode and disable add-ins.
* Create a new Outlook profile.
* Repair Outlook data files.
* Run the command `/resetnavpane`.
## Detection
- **Indicators of Compromise:** Users observing errors when launching classic Outlook, specifically messages related to application start failure, inability to open the window, or Exchange logon failure.
- **Detection Methods and Tools:** Monitoring client application event logs for Outlook startup failures related to Exchange connectivity.
## References
- Vendor Advisory (Service Update): [support dot microsoft dot com/en-us/office/error-when-opening-classic-outlook-cannot-start-microsoft-outlook-cannot-open-the-outlook-window-the-set-of-folders-cannot-be-opened-the-attempt-to-log-on-to-microsoft-exchange-has-failed-b5378005-7931-44df-b37a-b87a935fd3f8] (Defanged)
- General Troubleshooting: [support dot microsoft dot com/en-us/office/i-can-t-start-microsoft-outlook-or-receive-the-error-cannot-start-microsoft-outlook-cannot-open-the-outlook-window-d1f69da6-b333-4650-97bf-4d77bd7abb85] (Defanged)