Thanks to Ben Camm-Jones at WebUser for this warning. A new scam is a foot. If you receive an email warning about an Outlook vulnerability and guiding you to download a patch, don't fall for it.
I've not received the email myself and I don't have any more details than those offered by Mr. Camm-Jones. I apologize ahead of time if this is old news, but this is the first I've heard of it, and the article's just published today.