Detections
Analytics

MS15-064: Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3062157)

medium Nessus Plugin ID 84085

Language:

Synopsis

The remote Microsoft Exchange server is affected by multiple vulnerabilities.

Description

The remote Microsoft Exchange server is missing a security update. It is, therefore, affected by multiple vulnerabilities :

 - A server-side request forgery vulnerability exists in Microsoft Exchange web applications due to improper management of same-origin policy. An attacker can exploit this by using a specially crafted web application, allowing further attacks to be carried out. (CVE-2015-1764)

 - A cross-site request forgery vulnerability exists in Microsoft Exchange web applications due to improper management of user sessions. A remote attacker can exploit this by tricking a user into visiting a specially crafted web page, resulting in gaining access to sensitive information, impersonating the user's identity, or injecting malicious content into the victim's web browser. (CVE-2015-1771)

 - An HTML injection vulnerability exists in Microsoft Exchange web applications due to not properly sanitizing user-supplied HTML strings. A remote attacker can exploit this by submitting a crafted script to a target site that uses HTML sanitization, resulting in the execution of malicious code in the security context of the user visiting the site. (CVE-2015-2359)

Solution

Microsoft has released a set of patches for Exchange 2013.

See Also

http://www.nessus.org/u?1cd10af0

Plugin Details

Severity: Medium

ID: 84085

File Name: smb_nt_ms15-064.nasl

Version: 1.12

Type: local

Agent: windows

Published: 6/10/2015

Updated: 4/20/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2015-1764

Vulnerability Information

CPE: cpe:/a:microsoft:exchange_server

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Ease: No known exploits are available

Patch Publication Date: 6/9/2015

Vulnerability Publication Date: 6/9/2015

Reference Information

CVE: CVE-2015-1764, CVE-2015-1771, CVE-2015-2359

BID: 75007, 75011, 75013

MSFT: MS15-064

MSKB: 3062157