(MS14-032) Vulnerability in Microsoft Lync Server Could Allow Information Disclosure (2969258)
Gravité: : Élevé
Identifiant(s) CVE: : CVE-2014-1823
Date du conseil: 11 juin 2014
Description
This security update addresses a vulnerability found in Microsoft Lync Server that could allow information disclosure, which remote attackers may possibly use to launch other attacks. This can be exploited once users join a supposedly join Lync meeting via clicking specially crafted meeting URL.
Solutions
Affected software and version:
- Microsoft Lync Server 2010
- Microsoft Lync Server 2013