Microsoft Exchange Server could allow a remote attacker to execute arbitrary code on the system, caused by improper handling of objects in memory. By persuading a victim to open specially-crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system with privileges of the victim.
Remote Code Execution
Microsoft Exchange Server 2013 CU23
Refer to Microsoft advisory for the complete list of affected products and their respective patches.