Taiwan National CERT
TWNCERT
::: Skip Navigation Links
> HomePage > Microsoft Security列表 > Microsoft Security

Microsoft Security

MS17-015 - Important- Security Update for Microsoft Exchange Server

This security update resolves a vulnerability in Microsoft Exchange Outlook Web Access (OWA). The vulnerability could allow remote code execution in Exchange Server if an attacker sends an email with a specially crafted attachment to a vulnerable Exchange server.

This security update is rated Important for Microsoft Exchange Server 2013 Service Pack 1, Microsoft Exchange Server Cumulative Update 14, and Microsoft Exchange Server 2016 Cumulative Update 3. For more information, see the Affected Software and Vulnerability Severity Ratings section.

The security update addresses the vulnerability by correcting how Microsoft Exchange validates web requests.

For more information about the vulnerability, see the Vulnerability Information section.

For more information about this update, see Microsoft Knowledge Base Article 4013242.

Reference

https://technet.microsoft.com/en-us/library/security/ms17-015.aspx

Publish Date
3/29/2017 12:00:00 AM