Multiple vulnerabilities in Microsoft Exchange Server

Description

Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to spoof user interface, gain privileges.

Below is a complete list of vulnerabilities:

1. Security UI vulnerability in Microsoft Exchange can be exploited remotely via specially crafted to spoof user interface.
2. An elevation of privilege vulnerability in Microsoft Exchange Server can be exploited remotely via specially crafted email to gain privileges.

Original advisories

• CVE-2017-8621

• CVE-2017-8560
• CVE-2017-8559

Related products

• Microsoft-Exchange-Server

CVE list

• CVE-2017-8559
  warning
• CVE-2017-8621
  high
• CVE-2017-8560
  warning

KB list

• 4018588

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com