Outlook | Web | Outlook.com | Account management, security, and privacy
Managing personal Outlook.com account settings, security, and privacy
Outlook Security Bug - RFC 791 Exploit
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 70%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
SteveB
0
Reputation points
Security bug, RFC 791 Exploit bug. Outlook has comprised my email address due to a bug. This issue results from Outlook not recognizing a hexadecimal encoded domain name in an image source URL and download images when the email is in the Junk folder, comprising my email address. This bug also downloads images from emails in any mail folder with hexadecimal encoded domain name when 'Block attachments, pictures and links from anyone not in my Safe senders and domains list' is enabled. Steps to reproduce: 1. Create HTML email with tag like attached screenshot. Enable Reading Pane. Put email into Junk folder and select email (I selected emails in Junk folder to report phishing). Images are downloaded. 2. Enable 'Block attachments...' setting. Using same encoded email, place in any email folder. Click on encoded email, images are downloaded. My email address was comprised by this bug, FIX IT!!!!
Outlook | Web | Outlook.com | Account management, security, and privacy
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 20%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWI%3C/text%3E%3C/svg%3E)
WISLabs Inc 10 Reputation points2026-04-11T19:47:51.74+00:00 Hi @SteveB,
What you’re observing is not typically considered an RFC 791 exploit or account compromise. In Outlook, automatic image loading can still occur under certain conditions even when “block external content” policies are enabled, especially when:
- The message is rendered in the Reading Pane (HTML preview engine still processes content)
- The image URL is interpreted as a valid external request by the renderer
- Security settings apply to attachments/links but not all embedded HTML rendering paths equally
In other words, this is usually a content rendering and privacy protection limitation, not evidence that your email account has been compromised.
Seeing images load from a message does not mean the sender gained access to your account — it only means Outlook processed an external resource referenced in the email body.
If this answers your question, please consider accepting it.
Regards,
WIS Labs Inc
Sign in to comment
Sign in to answer