Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft isa server 2004 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2006-7027
Microsoft Internet Security and Acceleration (ISA) Server 2004 logs unusual ASCII characters in the Host header, including the tab, which allows remote malicious users to manipulate portions of the log file and possibly leverage this for other attacks.
Microsoft Isa Server 2004
7.5
CVSSv2
CVE-2006-3652
Microsoft Internet Security and Acceleration (ISA) Server 2004 allows remote malicious users to bypass file extension filters via a request with a trailing "#" character. NOTE: as of 20060715, this could not be reproduced by third parties.
Microsoft Isa Server 2004
7.5
CVSSv2
CVE-2006-1651
Microsoft ISA Server 2004 allows remote malicious users to bypass certain filtering rules, including ones for (1) ICMP and (2) TCP, via IPv6 packets. NOTE: An established researcher has disputed this issue, saying that "Neither ISA Server 2004 nor Windows 2003 Basic Firewall...
Microsoft Isa Server 2004
5
CVSSv2
CVE-2007-4991
The SOCKS4 Proxy in Microsoft Internet Security and Acceleration (ISA) Server 2004 SP1 and SP2 allows remote malicious users to obtain potentially sensitive information (the destination IP address of another user's session) via an empty packet.
Microsoft Isa Server 2004
7.5
CVSSv2
CVE-2004-0892
Microsoft Proxy Server 2.0 and Microsoft ISA Server 2000 (which is included in Small Business Server 2000 and Small Business Server 2003 Premium Edition) allows remote malicious users to spoof trusted Internet content on a specially crafted webpage via spoofed reverse DNS lookup ...
Microsoft Proxy Server 2.0
Microsoft Isa Server 2000
Microsoft Windows 2003 Server 2000
Microsoft Windows 2003 Server 2003
9.3
CVSSv2
CVE-2009-1136
The Microsoft Office Web Components Spreadsheet ActiveX control (aka OWC10 or OWC11), as distributed in Office XP SP3 and Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet S...
Microsoft Office 2003
Microsoft Isa Server 2004
Microsoft Office Web Components Xp
Microsoft Isa Server 2006
Microsoft Office Web Components 2003
Microsoft Office Xp Sp3
2 EDB exploits
9.3
CVSSv2
CVE-2009-1534
Buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2000 Web Components SP3, Office XP Web Components SP3, BizTalk Server 2002, and Visual Studio .NET 2003 SP1 allows remote malicious users to execute arbitrary code via crafted property...
Microsoft Isa Server 2004
Microsoft Office 2003
Microsoft Office Xp
Microsoft Isa Server 2006
Microsoft Office Web Components 2003
Microsoft Office Web Components 2000
Microsoft Office Web Components Xp
Microsoft Office -
1 EDB exploit
9.3
CVSSv2
CVE-2009-0562
The Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 2004 SP3 and 2...
Microsoft Office 2003
Microsoft Office Xp
Microsoft Office Web Components Xp
Microsoft Isa Server 2004
Microsoft Isa Server 2006
Microsoft Office Web Components 2003
Microsoft Office -
Microsoft Office Web Components 2000
1 Article
4.3
CVSSv2
CVE-2009-0237
Cross-site scripting (XSS) vulnerability in cookieauth.dll in the HTML forms authentication component in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2006, 2006 Supportability Update, and 200...
Microsoft Internet Security And Acceleration Server 2006
Microsoft Forefront Threat Management Gateway -
Microsoft Internet Security And Acceleration Server 2004
5
CVSSv2
CVE-2009-0077
The firewall engine in Microsoft Forefront Threat Management Gateway, Medium Business Edition (TMG MBE); and Internet Security and Acceleration (ISA) Server 2004 SP3, 2006, 2006 Supportability Update, and 2006 SP1; does not properly manage the session state of web listeners, whic...
Microsoft Internet Security And Acceleration Server 2004
Microsoft Forefront Threat Management Gateway -
Microsoft Internet Security And Acceleration Server 2006
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »