4 matches found
KB4018588: Security Update for Microsoft Exchange Server
The remote Microsoft Exchange Server is missing a security update. It is, therefore, affected by multiple vulnerabilities : - Multiple cross-site scripting XSS vulnerabilities exist in Microsoft Exchange Outlook Web Access OWA due to improper validation of user-supplied input in web requests. An...
CVE-2017-8559
Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5 allows an elevation of privilege vulnerability due to the way that Exchange Outlook Web Access OWA handles web requests, aka "Microsoft Exchange Cross-Site Scripting Vulnerability...
CVE-2017-8559
CVE-2017-8559 affects Microsoft Exchange Server 2010 SP3, 2013 SP3, 2013 CU16, and 2016 CU5. The vulnerability is an elevation of privilege due to how Outlook Web Access (OWA) handles web requests, described as a cross-site scripting vulnerability. According to connected data, remediation exists:...
Description of the security update for Microsoft Exchange: July 11, 2017
Description of the security update for Microsoft Exchange: July 11, 2017 Summary This security update resolves a vulnerability in Microsoft Exchange Outlook Web Access OWA. The vulnerability could allow elevation of privilege or spoofing in Microsoft Exchange Server if an attacker sends an email...