(MS15-064) Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3062157)

  Severity: HIGH
  CVE Identifier: CVE-2015-1764,CVE-2015-1771
  Advisory Date: JUN 24, 2015

  DESCRIPTION

This update resolves two vulnerabilities that are present in Microsoft Exchange Server. The two vulnerabilities, when exploited, may allow elevation of privilege or information disclosure.

  SOLUTION

  AFFECTED SOFTWARE AND VERSION

  • Microsoft Exchange Server 2013 Service Pack 1
  • Microsoft Exchange Server 2013 Cumulative Update 8