Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft exchange server 5.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0340
An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and Internet Explorer allows malicious users to execute malicious script code against a user's mailbox via a message attachment that contains HTML code, which is executed automatica...
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
NA
CVE-1999-1043
Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) malformed NNTP data, or (2) malformed SMTP data, which allows remote malicious users to cause a denial of service (application error).
Microsoft Exchange Server 5.0
Microsoft Exchange Server 5.5
NA
CVE-1999-0945
Buffer overflow in Internet Mail Service (IMS) for Microsoft Exchange 5.5 and 5.0 allows remote malicious users to conduct a denial of service via AUTH or AUTHINFO commands.
Microsoft Exchange Server 5.5
Microsoft Exchange Server 5.0
NA
CVE-2003-0714
The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote malicious users to cause a denial of service (memory exhaustion) by directly connecting to the SMTP service and sending a certain extended verb request, possibly triggering a buffer overflow in Excha...
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
2 EDB exploits
NA
CVE-1999-0993
Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.
Microsoft Exchange Server 5.5
Microsoft Exchange Server 5.0
NA
CVE-2001-1319
Microsoft Exchange 5.5 2000 allows remote malicious users to cause a denial of service (hang) via exceptional BER encodings for the LDAP filter type field, as demonstrated by the PROTOS LDAPv3 test suite.
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
NA
CVE-2002-0507
An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually ...
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
Rsa Securid 5.0
NA
CVE-2001-0726
Outlook Web Access (OWA) in Microsoft Exchange 5.5 Server, when used with Internet Explorer, does not properly detect certain inline script, which can allow remote malicious users to perform arbitrary actions on a user's Exchange mailbox via an HTML e-mail message.
Microsoft Exchange Server 5.5
NA
CVE-2003-0712
Cross-site scripting (XSS) vulnerability in the HTML encoding for the Compose New Message form in Microsoft Exchange Server 5.5 Outlook Web Access (OWA) allows remote malicious users to execute arbitrary web script.
Microsoft Exchange Server 5.5
NA
CVE-2005-0563
Cross-site scripting (XSS) vulnerability in Microsoft Outlook Web Access (OWA) component in Exchange Server 5.5 allows remote malicious users to inject arbitrary web script or HTML via an email message with an encoded javascript: URL ("javAsc
ript:") i...
Microsoft Exchange Server 5.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »