Remote code execution vulnerabilities in Microsoft Exchange Server - MS12-080ID: oval:org.secpod.oval:def:8184 | Date: (C)2012-12-12 (M)2022-10-10 |
Class: PATCH | Family: windows |
The host is missing a critical security update according to Microsoft security bulletin, MS12-080. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Exchange Server, which fails to properly handle the WebReady Document Viewing and Outlook Web App files. Successful exploitation could allow remote code execution in the security context of the transcoding service.
Platform: |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Product: |
Microsoft Exchange Server 2007 |
Microsoft Exchange Server 2010 |