CVE-2018-8302

Name of the Vulnerable Software and Affected Versions Microsoft Exchange Server (affected versions not specified)

Description The issue is related to errors in handling objects in memory, which can be exploited by a remote attacker to execute arbitrary code with SYSTEM privileges. This can allow the attacker to install programs, view, change, or delete data, or create new accounts. Exploitation requires sending a specially crafted email to a vulnerable Exchange server.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.