Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     
  Technical Updates @ TACKtech Corp.  

08.27.2013 - MS13-061 - Critical : Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2876063) - Version: 3.0



View Microsoft related news. Severity Rating: Critical
Revision Note: V3.0 (August 27, 2013): Rereleased bulletin to announce the reoffering of the 2874216 update for Microsoft Exchange Server 2013 Cumulative Update 1 and Microsoft Exchange Server 2013 Cumulative Update 2. See the Update FAQ for details.
Summary: This security update resolves three publicly disclosed vulnerabilities in Microsoft Exchange Server. The vulnerabilities exist in the WebReady Document Viewing and Data Loss Prevention features of Microsoft Exchange Server. The vulnerabilities could allow remote code execution in the security context of the transcoding service on the Exchange server if a user previews a specially crafted file using Outlook Web App (OWA). The transcoding service in Exchange that is used for WebReady Document Viewing uses the credentials of the LocalService account. The Data Loss Prevention feature hosts code that could allow remote code execution in the security context of the Filtering Management service if a specially crafted message is received by the Exchange server. The Filtering Management service in Exchange uses the credentials of the LocalService account. The LocalService account has minimum privileges on the local system and presents anonymous credentials on the network.

- View Microsoft Security Bulletin MS13-061
- View Microsoft Knowledge Base Article - on: 3.
- Visit Microsoft Corporation

NID: 45713 / Submitted by: The Zilla of Zuron
Categories: Microsoft
Most recent Microsoft related news.
MS16-140 - Important: Security Update for Boot Manager (3193479) - Version: 1.1
MS16-130 - Critical: Security Update for Microsoft Windows (3199172) - Version: 1.1
MS16-134 - Important: Security Update for Common Log File System Driver (3193706) - Version: 1.0
MS16-141 - Critical: Security Update for Adobe Flash Player (3202790) - Version: 1.0
MS16-132 - Critical: Security Update for Microsoft Graphics Component (3199120) - Version: 1.0
View archive of Microsoft related news.

Visit the TACKtech Shop
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
........