CVE-2018-8151

Description

An information disclosure vulnerability exists when Microsoft Exchange improperly handles objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server. This CVE ID is unique from CVE-2018-8154.

Affected products

• Microsoft / Microsoft Exchange Server2010 Service Pack 3 Update Rollup 21 – 2010 Service Pack 3 Update Rollup 21
• Microsoft / Microsoft Exchange Server2013 Cumulative Update 19 – 2013 Cumulative Update 19
• Microsoft / Microsoft Exchange Server2013 Cumulative Update 20 – 2013 Cumulative Update 20
• Microsoft / Microsoft Exchange Server2013 Service Pack 1 – 2013 Service Pack 1
• Microsoft / Microsoft Exchange Server2016 Cumulative Update 8 – 2016 Cumulative Update 8
• Microsoft / Microsoft Exchange Server2016 Cumulative Update 9 – 2016 Cumulative Update 9

References

• MISChttp://www.securityfocus.com/bid/104042
• MISChttp://www.securitytracker.com/id/1040850
• VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8151