Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft exchange server 2007 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2007-6033
Invensys Wonderware InTouch 8.0 creates a NetDDE share with insecure permissions (Everyone/Full Control), which allows remote authenticated attackers, and possibly anonymous users, to execute arbitrary programs.
Wonderware Intouch 8.0
4.3
CVSSv3
CVE-2016-0138
Microsoft Exchange Server 2007 SP3, 2010 SP3, 2013 SP1, 2013 Cumulative Update 12, 2013 Cumulative Update 13, 2016 Cumulative Update 1, and 2016 Cumulative Update 2 misparses e-mail messages, which allows remote authenticated users to obtain sensitive Outlook application informat...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
NA
CVE-2014-6319
Outlook Web App (OWA) in Microsoft Exchange Server 2007 SP3, 2010 SP3, and 2013 SP1 and Cumulative Update 6 does not properly validate tokens in requests, which allows remote malicious users to spoof the origin of e-mail messages via unspecified vectors, aka "Outlook Web App...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
NA
CVE-2013-0418
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent malicious users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE:...
Microsoft Exchange Server 2010
Microsoft Exchange Server 2007
Oracle Fusion Middleware 8.4
Oracle Fusion Middleware 8.3.7.0
NA
CVE-2012-4791
Microsoft Exchange Server 2007 SP3 and 2010 SP1 and SP2 allows remote authenticated users to cause a denial of service (Information Store service hang) by subscribing to a crafted RSS feed, aka "RSS Feed May Cause Exchange DoS Vulnerability."
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
NA
CVE-2010-3937
Microsoft Exchange Server 2007 SP2 on the x64 platform allows remote authenticated users to cause a denial of service (infinite loop and MSExchangeIS outage) via a crafted RPC request, aka "Exchange Server Infinite Loop Vulnerability."
Microsoft Exchange Server 2007
NA
CVE-2010-2728
Heap-based buffer overflow in Microsoft Outlook 2002 SP3, 2003 SP3, and 2007 SP2, when Online Mode for an Exchange Server is enabled, allows remote malicious users to execute arbitrary code via a crafted e-mail message, aka "Heap Based Buffer Overflow in Outlook Vulnerabilit...
Microsoft Outlook 2003
Microsoft Outlook 2007
Microsoft Outlook 2002
NA
CVE-2010-1689
The DNS implementation in smtpsvc.dll prior to 6.0.2600.5949 in Microsoft Windows 2000 SP4 and previous versions, Windows XP SP3 and previous versions, Windows Server 2003 SP2 and previous versions, Windows Server 2008 SP2 and previous versions, Windows Server 2008 R2, Exchange S...
Microsoft Windows 2000 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
NA
CVE-2010-1690
The DNS implementation in smtpsvc.dll prior to 6.0.2600.5949 in Microsoft Windows 2000 SP4 and previous versions, Windows XP SP3 and previous versions, Windows Server 2003 SP2 and previous versions, Windows Server 2008 SP2 and previous versions, Windows Server 2008 R2, Exchange S...
Microsoft Windows 2000 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
NA
CVE-2010-1425
F-Secure Internet Security 2010 and previous versions; Anti-Virus for Microsoft Exchange 9 and previous versions, and for MIMEsweeper 5.61 and previous versions; Internet Gatekeeper for Windows 6.61 and previous versions, and for Linux 4.02 and previous versions; Anti-Virus 2010 ...
F-secure F-secure Anti-virus 5.61
F-secure F-secure Anti-virus 5.41
F-secure F-secure Anti-virus 4.62
F-secure F-secure Anti-virus 4.51
F-secure F-secure Anti-virus
F-secure F-secure Anti-virus 5.42
F-secure F-secure Anti-virus 4.52
F-secure F-secure Anti-virus 5.5
F-secure F-secure Anti-virus 5.43
F-secure F-secure Anti-virus 6.2
F-secure F-secure Anti-virus 4.64
F-secure F-secure Anti-virus 5.11
F-secure F-secure Anti-virus 5.40
F-secure F-secure Anti-virus 5.52
F-secure F-secure Anti-virus 6.01
F-secure F-secure Anti-virus 2007
F-secure F-secure Anti-virus 2008
F-secure F-secure Anti-virus 4.61
F-secure F-secure Anti-virus 5.01
F-secure F-secure Anti-virus 4.50
F-secure F-secure Anti-virus 5.0.2
F-secure F-secure Anti-virus 5.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »