Описание
Oracle Outside In Vulnerabilities
This security update addresses the following vulnerabilities, which are described in Oracle Critical Patch Update Advisory – July 2016
Remote Code Execution: CVE-2016-3575, CVE-2016-3581, CVE-2016-3582, CVE-2016-3583, CVE-2016-3595, CVE-2016-3594, CVE-2015-6014, CVE-2016-3593, CVE-2016-3592, CVE-2016-3596, CVE-2016-3591
Information Disclosure: CVE-2016-3574
Denial of Service: CVE-2016-3576, CVE-2016-3577, CVE-2016-3578, CVE-2016-3579, CVE-2016-3580, CVE-2016-3590
FAQ
Why is Microsoft issuing a security update for vulnerabilities that are in third-party code, Oracle Outside In libraries? Microsoft licenses a custom implementation of the Oracle Outside In libraries, specific to the product in which the third-party code is used. Microsoft is issuing this security update to help ensure that all customers using this third-party code in Microsoft Exchange are protected from these vulnerabilities. For more information about these vulnerabilities, see Oracle Critical Patch Update Advisory – July 2016.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Microsoft Exchange Server 2007 Service Pack 3 | ||
| Microsoft Exchange Server 2010 Service Pack 3 | ||
| Microsoft Exchange Server 2013 Service Pack 1 | ||
| Microsoft Exchange Server 2013 Cumulative Update 12 | ||
| Microsoft Exchange Server 2016 Cumulative Update 1 | ||
| Microsoft Exchange Server 2013 Cumulative Update 13 | ||
| Microsoft Exchange Server 2016 Cumulative Update 2 |
Показывать по
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
Older Software Release
DOS