KLA10658Multiple vulnerabilities in Microsoft Exchange Server

2015-09-08T00:00:00
ID KLA10658
Type kaspersky
Reporter Kaspersky Lab
Modified 2015-09-14T00:00:00

Description

CVSS:

5.0

Detect date:

09/08/2015

Severity:

Warning

Description:

Multiple serious vulnerabilities have been found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to spoof user interface or obtain sensitive information.

Affected products:

Exchange Server 2013 Cumulative Update 8
Exchange Server 2013 Cumulative Update 9
Exchange Server 2013 Service Pack 1

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

MS15-103

Impacts:

SUI

Related products:

Microsoft Exchange Server

CVE-IDS:

CVE-2015-2505
CVE-2015-2543
CVE-2015-2544

Microsoft official advisories:

MS15-103

KB list:

3089250
3087126