It was also discovered that OLE-SMB scenario leaks more than the user’s IP address. When the RTF email is previewed, the computer automatically negotiates an SMB session from a possibly malicious remote SMB server.
Read full news article on HackRead