1. Welcome Guest! In order to create a new topic or reply to an existing one, you must register first. It is easy and free. Click here to sign up now!.
    Dismiss Notice

MS14-075 - Important: Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of...

Discussion in 'Security Updates' started by Microsoft Security, Dec 9, 2014.

  1. Microsoft Security

    Microsoft Security Guest

    Severity Rating: Important
    Revision Note: V1.0 (December 9, 2014): Bulletin published.
    Summary: This security update resolves four privately reported vulnerabilities in Microsoft Exchange Server. The most severe of these vulnerabilities could allow elevation of privilege if a user clicks a specially crafted URL that takes them to a targeted Outlook Web App site. An attacker would have no way to force users to visit a specially crafted website. Instead, an attacker would have to convince them to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes them to the attacker's website, and then convince them to click the specially crafted URL.

    View the full article
     
    Microsoft Security, Dec 9, 2014
    #1

Share This Page