KLA11492
Bypass security restrictions vulnerability in Microsoft Exchange Server
Updated: 05/22/2020
Detect date
?
06/11/2019
Severity
?
Warning
Description

Microsoft has released an update for Microsoft Exchange Server that provides enhanced security as a defense in depth measure, preventing crashes from uploading certain file types.

Affected products

Microsoft Exchange Server 2019
Microsoft Exchange Server 2019 Cumulative Update 1
Microsoft Exchange Server 2013 Cumulative Update 22
Microsoft Exchange Server 2016 Cumulative Update 11
Microsoft Exchange Server 2016 Cumulative Update 12
Microsoft Exchange Server 2010 Service Pack 3

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

ADV190018

Impacts
?
SB 
[?]
Related products
Microsoft Exchange Server
CVE-IDS
?
ADV1900180.0Unknown
Microsoft official advisories
Microsoft Security Update Guide
KB list

4503027
4503028