Multiple vulnerabilities in Microsoft Exchange Server

Описание

Multiple serious vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to execute arbitrary code and bypass security restrictions.

Below is a complete list of vulnerabilities:

1. An tampering vulnerability can be exploited via specially crafted application to bypass security restrictions;
2. An improper memory handling vulnerability can be exploited remotely via specially crafted email to execute arbitrary code;

Первичный источник обнаружения

• CVE-2018-8374
  CVE-2018-8302
  

Связанные продукты

• Microsoft-Exchange-Server

Список CVE

• CVE-2018-8374
  warning
• CVE-2018-8302
  critical

Список KB

• 4340733
• 4340731

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com