You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
crafted url
About this tag
The crafted url tag on WindowsForum.com covers security updates addressing vulnerabilities in Microsoft products where an attacker could exploit a specially crafted URL to elevate privileges. These updates affect Skype for Business Server, Lync Server, System Center Operations Manager, Exchange Server, and Dynamics AX Enterprise Portal. In each case, the vulnerability requires user interaction, such as clicking a link in an email or instant message. The tag aggregates discussions about these security bulletins, focusing on the common attack vector of crafted URLs leading to privilege escalation. Users will find information about affected software, severity ratings, and mitigation steps.
Severity Rating: Important
Revision Note: V1.0 (September 8, 2015): Bulletin published.
Summary: This security update resolves vulnerabilities in Skype for Business Server and Microsoft Lync Server. The most severe of these vulnerabilities could allow elevation of privilege if a user clicks a...
Severity Rating: Important
Revision Note: V1.0 (August 11, 2015): Bulletin published.
Summary: This security update resolves a vulnerability in Microsoft System Center Operations Manager. The vulnerability could allow elevation of privilege if a user visits an affected website by way of a...
2015
attack
bulletin
craftedurl
elevation
email
important
messenger
microsoft
operations manager
patch
privilege
risk
security
system center
update
url
user awareness
vulnerability
website
Severity Rating: Important
Revision Note: V1.0 (December 9, 2014): Bulletin published.
Summary: This security update resolves four privately reported vulnerabilities in Microsoft Exchange Server. The most severe of these vulnerabilities could allow elevation of privilege if a user clicks a...
attack
bulletin
craftedurl
cybersecurity
elevation
email
exchange server
important
links
messenger
microsoft
outlook
privilege
protection
revision
security
severity rating
update
vulnerability
web apps
Severity Rating: Important
Revision Note: V1.0 (June 12, 2012): Bulletin published.
Summary: This security update resolves one privately reported vulnerability in Microsoft Dynamics AX Enterprise Portal. The vulnerability could allow elevation of privilege if a user clicks...