1. Welcome Guest! In order to create a new topic or reply to an existing one, you must register first. It is easy and free. Click here to sign up now!.
    Dismiss Notice

MS13-105 - Critical : Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code...

Discussion in 'Security Updates' started by Microsoft Security, Dec 10, 2013.

  1. Microsoft Security

    Microsoft Security Guest

    Severity Rating: Critical
    Revision Note: V1.0 (December 10, 2013): Bulletin published.
    Summary: This security update resolves three publicly disclosed vulnerabilities and one privately reported vulnerability in Microsoft Exchange Server. The most severe of these vulnerabilities exist in the WebReady Document Viewing and Data Loss Prevention features of Microsoft Exchange Server. These vulnerabilities could allow remote code execution in the security context of the LocalService account if an attacker sends an email message containing a specially crafted file to a user on an affected Exchange server. The LocalService account has minimum privileges on the local system and presents anonymous credentials on the network.

    View the full article
     
    Microsoft Security, Dec 10, 2013
    #1

Share This Page