Make Homepage  | Add To Favorites  | Print Page | Contact
     More Technical Information Than You Can Handle. 
 

.
 

MS14-075 - Important: Vulnerabilities in...

  
Severity Rating: Important
Revision Note: V2.0 (December 10, 2014): Revised bulletin to remove Download Center link for Microsoft security update 2986475 for Microsoft Exchange Server 2010 Service Pack 3 to address a known issue with the update. Microsoft is working to address the issue, and will update this bulletin when more information becomes available. Microsoft has removed update 2986475 and recommends that customers uninstall update 2986475 if they have already installed it.
Summary: This security update resolves four privately reported vulnerabilities in Microsoft Exchange Server. The most severe of these vulnerabilities could allow elevation of privilege if a user clicks a specially crafted URL that takes them to a targeted Outlook Web App site. An attacker would have no way to force users to visit a specially crafted website. Instead, an attacker would have to convince them to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes them to the attacker's website, and then convince them to click the specially crafted URL.

- View Microsoft Security Bulletin MS14-075
- View Microsoft Knowledge Base Article - on: 2.
- Visit Microsoft Corporation

 Microsoft
Posted: December 10, 2014 |  By: Wissen Schwamm
Recent Microsoft related news.
MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - Version: 1.1
MS16-123 - Important: Security Update for Windows Kernel-Mode Drivers (3192892) - Version: 3.0
MS16-087 - Critical: Security Update for Windows Print Spooler Components (3170005) - Version: 2.0
MS16-095 - Critical: Cumulative Security Update for Internet Explorer (3177356) - Version: 3.0
MS16-039 - Critical: Security Update for Microsoft Graphics Component (3148522) - Version: 4.0
+ View more Microsoft related news +
     

Copyright © 2024 Nerd Press All Rights Reserved. | Last Updated: April 19, 2024
Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)