Microsoft Exchange Server Elevation of Privilege Vulnerabilities

Last Update Date: 12 Mar 2015 Release Date: 11 Mar 2015 3691 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

Multiple OWA XSS Vulnerabilities
Elevation of privilege vulnerabilities exist when Microsoft Exchange Server does not properly sanitize page content in Outlook Web App. An attacker could exploit these vulnerabilities by modifying certain properties within Outlook Web App and then convincing users to browse to the targeted Outlook Web App site. An attacker who successfully exploited these vulnerabilities could run script in the context of the current user. The script could then, for example, use the victim's identity to take actions on the affected Outlook Web App site on behalf of the victim with the same permissions as the current user. Any system that is used to access an affected version of Outlook Web App would potentially be at risk to attack. The update addresses the vulnerabilities by correcting how Exchange Server sanitizes page content in Outlook Web App.
Exchange Forged Meeting Request Spoofing Vulnerability
A spoofing vulnerability exists in Exchange Server when Exchange fails to properly validate meeting organizer identity when accepting or modifying meeting requests. An attacker who successfully exploited this vulnerability could then use the vulnerability to schedule or modify meetings while appearing to originate from a legitimate meeting organizer. Customers using affected versions of Exchange Server are at risk for this vulnerability. The update addresses the vulnerability by correcting the way Exchange validates meeting organizer authenticity when accepting, scheduling, or modifying meeting requests in Exchange calendars.