Security Update For Exchange Server 2013 CU11 (KB3150501)

2016-06-14T17:00:00
ID MS:AFB38B26-AB18-4004-A611-52EB4AD3D2E5
Type msupdate
Reporter Microsoft
Modified 2016-06-14T17:00:00

Description

This security update resolves vulnerabilities in Microsoft Exchange Server. The most severe of the vulnerabilities could allow information disclosure if an attacker sends a specially crafted image URL in an Outlook Web Access (OWA) message that is loaded, without warning or filtering, from the attacker-controlled URL. Microsoft is issuing this security update for Oracle binaries to help ensure that all customers using this third-party code in Microsoft Exchange are protected from these vulnerabilities.