@14abadff 

It's good research, but ultimately, I don't think the vulnerabilities are as bad as Binarly suggests. That's because the exploits work only if an admin clicks on a malicious link sent in an email.