Microsoft Update Catalog

Description: This security update resolves vulnerabilities in Microsoft Exchange Server. The most severe of the vulnerabilities could allow information disclosure if an attacker sends a specially crafted image URL in an Outlook Web Access (OWA) message that is loaded, without warning or filtering, from the attacker-controlled URL. Microsoft is issuing this security update for Oracle binaries to help ensure that all customers using this third-party code in Microsoft Exchange are protected from these vulnerabilities.

Architecture: n/a

Classification: Security Updates

Supported products: Exchange Server 2016

Supported languages: Arabic , Bulgarian , Chinese (Traditional) , Czech , Danish , German , Greek , English , Spanish , Finnish , French , Hebrew , Hungarian , Italian , Japanese , Korean , Dutch , Norwegian , Polish , Portuguese (Brazil) , Romanian , Russian , Croatian , Slovak , Swedish , Thai , Turkish , Ukrainian , Slovenian , Estonian , Latvian , Lithuanian , Hindi , Chinese (Simplified) , Portuguese (Portugal) , Serbian (Latin) , Chinese - Hong Kong SAR , Japanese NEC

MSRC Number: MS16-079

MSRC severity: Important

KB article numbers: 3150501

More information:

https://support.microsoft.com/?kbid=3150501

Support Url:

https://technet.microsoft.com/en-us/exchange/fp179701

Arabic	Bulgarian
Chinese (Traditional)	Czech
Danish	German
Greek	English
Spanish	Finnish
French	Hebrew
Hungarian	Italian
Japanese	Korean
Dutch	Norwegian
Polish	Portuguese (Brazil)
Romanian	Russian
Croatian	Slovak
Swedish	Thai
Turkish	Ukrainian
Slovenian	Estonian
Latvian	Lithuanian
Hindi	Chinese (Simplified)
Portuguese (Portugal)	Serbian (Latin)
Chinese - Hong Kong SAR	Japanese NEC