Microsoft released a security patch for an Exchange Server vulnerability being actively exploited in the wild. The flaw enables attackers to execute arbitrary JavaScript code through cross-site scripting attacks against Outlook Web Access users. This represents an immediate threat to organizations relying on Exchange Server infrastructure.

Why it matters in Western Canada: Many Western Canadian post-secondary institutions, government agencies, and healthcare organizations operate Exchange Server and Outlook Web Access for email and collaboration. Active exploitation increases risk to these sectors across the region.

---

Summary generated from the original advisory. Read the full source: bleepingcomputer