Microsoft issued a security update for its Yammer Desktop application that addresses a remote code execution vulnerability (CVE-2018-8569).
“To exploit this vulnerability, an attacker needs to convince the victim to click the special URL in the desktop application that redirect to the attacker-controlled web-page,” Microsoft said in the advisory.
The Yammer update was added to Microsoft’s October Security Updates.