CVE-2018-8448

Description

An elevation of privilege vulnerability exists when Microsoft Exchange Outlook Web Access (OWA) fails to properly handle web requests, aka "Microsoft Exchange Server Elevation of Privilege Vulnerability." This affects Microsoft Exchange Server.

Affected products

• Microsoft / Microsoft Exchange Server2013 Cumulative Update 21 – 2013 Cumulative Update 21
• Microsoft / Microsoft Exchange Server2016 Cumulative Update 10 – 2016 Cumulative Update 10

References

• VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8448
• MISChttp://www.securitytracker.com/id/1041836
• MISChttp://www.securityfocus.com/bid/105492