logo
DATABASE RESOURCES PRICING ABOUT US

KLA11302 Multiple vulnerabilities in Microsoft Exchange Server

Description

### *Detect date*: 08/14/2018 ### *Severity*: Warning ### *Description*: Multiple serious vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to execute arbitrary code and bypass security restrictions. ### *Affected products*: Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 23 Microsoft Exchange Server 2013 Cumulative Update 20 Microsoft Exchange Server 2013 Cumulative Update 21 Microsoft Exchange Server 2016 Cumulative Update 10 Microsoft Exchange Server 2016 Cumulative Update 9 ### *Solution*: Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) ### *Original advisories*: [CVE-2018-8374](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8374>) [CVE-2018-8302](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8302>) ### *Impacts*: ACE ### *Related products*: [Microsoft Exchange Server](<https://threats.kaspersky.com/en/product/Microsoft-Exchange-Server/>) ### *CVE-IDS*: [CVE-2018-8374](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8374>)4.0Warning ### *Microsoft official advisories*: ### *KB list*: [4340733](<http://support.microsoft.com/kb/4340733>) [4340731](<http://support.microsoft.com/kb/4340731>)


Related