CVE-2018-8153

Description

A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web Access (OWA) fails to properly handle web requests, aka "Microsoft Exchange Spoofing Vulnerability." This affects Microsoft Exchange Server.

Affected products

• Microsoft / Microsoft Exchange Server2016 Cumulative Update 8 – 2016 Cumulative Update 8
• Microsoft / Microsoft Exchange Server2016 Cumulative Update 9 – 2016 Cumulative Update 9

References

• MISChttp://www.securityfocus.com/bid/104045
• MISChttp://www.securitytracker.com/id/1040850
• VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8153