CVE-2018-8159

UNRATED

Description

An elevation of privilege vulnerability exists when Microsoft Exchange Outlook Web Access (OWA) fails to properly handle web requests, aka "Microsoft Exchange Elevation of Privilege Vulnerability." This affects Microsoft Exchange Server.

Affected products

Microsoft / Microsoft Exchange Server2013 Cumulative Update 19 – 2013 Cumulative Update 19
Microsoft / Microsoft Exchange Server2013 Cumulative Update 20 – 2013 Cumulative Update 20
Microsoft / Microsoft Exchange Server2016 Cumulative Update 8 – 2016 Cumulative Update 8
Microsoft / Microsoft Exchange Server2016 Cumulative Update 9 – 2016 Cumulative Update 9

References

VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8159
MISChttp://www.securityfocus.com/bid/104056
MISChttp://www.securitytracker.com/id/1040850