KLA11839 Multiple vulnerabilities in Microsoft Exchange Server

2017-05-25T00:00:00
ID KLA11839
Type kaspersky
Reporter Kaspersky Lab
Modified 2020-07-22T00:00:00

Description

Detect date:

05/25/2017

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.

Exploitation:

The following public exploits exists for this vulnerability:

Affected products:

Microsoft Exchange Server 2016
Microsoft Exchange Server 2013

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2017-8540
CVE-2017-8541
CVE-2017-8542
CVE-2017-8539
CVE-2017-8538
CVE-2017-8535
CVE-2017-8537
CVE-2017-8536

Impacts:

ACE

Related products:

Microsoft Exchange Server

CVE-IDS:

CVE-2017-85424.3Warning
CVE-2017-85419.3Critical
CVE-2017-85409.3Critical
CVE-2017-85394.3Warning
CVE-2017-85389.3Critical
CVE-2017-85374.3Warning
CVE-2017-85364.3Warning
CVE-2017-85354.3Warning

Microsoft official advisories: