Microsoft Lync vulnerabilities

CVE-2019-1084 [MEDIUM] CWE-200 CVE-2019-1084: An information disclosure vulnerability exists when Exchange allows creation of entities with Displa An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could exploit this vulnerability by creating entities with invalid display names, which, when added to conversations, remain invisible. This security update addresses the issue by valida

CVE-2018-8546 [MEDIUM] CVE-2018-8546: A denial of service vulnerability exists in Skype for Business, aka "Microsoft Skype for Business De A denial of service vulnerability exists in Skype for Business, aka "Microsoft Skype for Business Denial of Service Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype.

CVE-2018-8474 [HIGH] CWE-20 CVE-2018-8474: A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize spe A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.

CVE-2018-8238 [HIGH] CVE-2018-8238: A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka "Skype for Business and Lync Security Feature Bypass Vulnerability." This affects Skype, Microsoft Lync.

CVE-2018-8311 [HIGH] CWE-20 CVE-2018-8311: A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka "Remote Code Execution Vulnerability in Skype For Business and Lync." This affects Skype, Microsoft Lync.