Proof of Concept exploit against Microsoft Support Diagnostic Tool
You can read the full advisory here:
https://medium.com/@radimre83/the-trouble-with-microsofts-troubleshooters-6e32fc80b8bd
Direct link to a crafted .diagcab file (tested with Google Chrome, Mozilla Firefox, Microsoft Edge)
Diagcab packaged into a Word document (payload by @j00sean)
Link to the same file via a file system share (tested with Outlook if received as an email)
Internet Explorer blocks opening .diagcab files