Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook web access 2007 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-3213
Cross-site request forgery (CSRF) vulnerability in Microsoft Outlook Web Access (owa/ev.owa) 2007 through SP2 allows remote malicious users to hijack the authentication of e-mail users for requests that perform Outlook requests, as demonstrated by setting the auto-forward rule.
Microsoft Outlook Web Access 2007
1 EDB exploit
4.3
CVSSv2
CVE-2008-2248
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote malicious users to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Outlook Web Access
4.3
CVSSv2
CVE-2010-2091
Microsoft Outlook Web Access (OWA) 8.2.254.0, when Internet Explorer 7 on Windows Server 2003 is used, does not properly handle the id parameter in a Folder IPF.Note action to the default URI, which might allow remote malicious users to obtain sensitive information or conduct cro...
Microsoft Exchange Server 2007
1 EDB exploit
6.8
CVSSv2
CVE-2007-0220
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2000 SP3, and 2003 SP1 and SP2 allows remote malicious users to execute arbitrary scripts, spoof content, or obtain sensitive information via certain UTF-encoded, script-based e-mail...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
4.3
CVSSv2
CVE-2008-2247
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote malicious users to inject arbitrary web script or HTML via unspecified e-mail fields, a different vulnerability than CVE-2008-2248.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
9.3
CVSSv2
CVE-2017-0199
Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote malicious users to execute arbitrary code via a crafted document, aka "Micros...
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 -
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2016
Microsoft Windows 7
Microsoft Office 2007
3 EDB exploits
46 Github repositories
26 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started