MS16-010: Security update in Microsoft Exchange Server to address spoofing: January 12, 2016

Summary

This security update resolves a vulnerability in Microsoft Exchange Server that could allow information disclosure if Outlook Web Access (OWA) doesn't handle web requests, sanitize user input and email content correctly.

To learn more about the vulnerability, see Microsoft Security Bulletin MS16-010.

How to get and install the update

Method 1: Microsoft Update
Method 2: Microsoft Download Center

More Information

Security update deployment information
File hash information
File information ERROR: PhantomJS timeout occurred