Microsoft Update Catalog

Description: A remote code execution vulnerability exists in Microsoft Exchange through the deserialization of metadata via Powershell. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the logged in user.

Architecture: n/a

Classification: Security Updates

Supported products: Exchange Server 2016

Supported languages: Arabic , Bulgarian , Chinese (Traditional) , Czech , Danish , German , Greek , English , Spanish , Finnish , French , Hebrew , Hungarian , Italian , Japanese , Korean , Dutch , Norwegian , Polish , Portuguese (Brazil) , Romanian , Russian , Croatian , Slovak , Swedish , Thai , Turkish , Ukrainian , Slovenian , Estonian , Latvian , Lithuanian , Hindi , Chinese (Simplified) , Portuguese (Portugal) , Serbian (Latin) , Chinese - Hong Kong SAR , Japanese NEC

MSRC Number: n/a

MSRC severity: n/a

KB article numbers: 4523171

More information:

https://support.microsoft.com/?kbid=4523171

Support Url:

https://technet.microsoft.com/en-us/exchange/fp179701

Arabic	Bulgarian
Chinese (Traditional)	Czech
Danish	German
Greek	English
Spanish	Finnish
French	Hebrew
Hungarian	Italian
Japanese	Korean
Dutch	Norwegian
Polish	Portuguese (Brazil)
Romanian	Russian
Croatian	Slovak
Swedish	Thai
Turkish	Ukrainian
Slovenian	Estonian
Latvian	Lithuanian
Hindi	Chinese (Simplified)
Portuguese (Portugal)	Serbian (Latin)
Chinese - Hong Kong SAR	Japanese NEC