Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution - MS13-012ID: oval:org.secpod.oval:def:9278 | Date: (C)2013-02-14 (M)2022-10-10 |
Class: PATCH | Family: windows |
The host is missing a critical security update according to Microsoft bulletin, MS13-012. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which are caused when WebReady Document Viewer is used to preview a specially crafted file. Successful exploitation allows attackers to run arbitrary code and affect availability.
Platform: |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 R2 |
Product: |
Microsoft Exchange Server 2007 |
Microsoft Exchange Server 2010 |