virus logo FortiClient Vulnerability

Microsoft Exchange CVE-2017-11761 Information Disclosure Vulnerability

description-logoDescription

An input sanitization issue exists with Microsoft Exchange that could potentially result in unintended Information Disclosure. An attacker who successfully exploited the vulnerability could identify the existence of RFC1918 addresses on the local network from a client on the Internet. An attacker could use this internal host information as part of a larger attack.

affected-products-logoAffected Applications

Microsoft Exchange Server 2013 Cumulative Update 16
Microsoft Exchange Server 2013 Cumulative Update 17
Microsoft Exchange Server 2013 Service Pack 1
Microsoft Exchange Server 2016 Cumulative Update 5
Microsoft Exchange Server 2016 Cumulative Update 6

CVE References

CVE-2017-11761

Other References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2017-11761
ID 36685
Created Jul 11, 2018
Description
Updated		 Dec 21, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Microsoft
Patch auto
Application Microsoft Exchange Server 2013 Cumulative Update 16 , Microsoft Exchange Server 2013 Cumulative Update 17 , Microsoft Exchange Server 2013 Service Pack 1 , Microsoft Exchange Server 2016 Cumulative Update 5 , Microsoft Exchange Server 2016 Cumulative Update 6