Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft exchange server 2003 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2005-0560
Heap-based buffer overflow in the SvrAppendReceivedChunk function in xlsasink.dll in the SMTP service of Exchange Server 2000 and 2003 allows remote malicious users to execute arbitrary code via a crafted X-LINK2STATE extended verb request to the SMTP port.
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
1 EDB exploit
1000
VMScore
CVE-2004-0574
The Network News Transfer Protocol (NNTP) component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote malicious users to execute arbitrary code via XPAT patterns, possibly related to improper...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
Microsoft Windows 2000 -
Microsoft Windows Nt 4.0
Microsoft Windows Server 2003 R2
1 EDB exploit
570
VMScore
CVE-2010-1689
The DNS implementation in smtpsvc.dll prior to 6.0.2600.5949 in Microsoft Windows 2000 SP4 and previous versions, Windows XP SP3 and previous versions, Windows Server 2003 SP2 and previous versions, Windows Server 2008 SP2 and previous versions, Windows Server 2008 R2, Exchange S...
Microsoft Windows 2000 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
570
VMScore
CVE-2010-1690
The DNS implementation in smtpsvc.dll prior to 6.0.2600.5949 in Microsoft Windows 2000 SP4 and previous versions, Windows XP SP3 and previous versions, Windows Server 2003 SP2 and previous versions, Windows Server 2008 SP2 and previous versions, Windows Server 2008 R2, Exchange S...
Microsoft Windows 2000 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
383
VMScore
CVE-2008-2248
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote malicious users to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Outlook Web Access
890
VMScore
CVE-2004-0840
The SMTP (Simple Mail Transfer Protocol) component of Microsoft Windows XP 64-bit Edition, Windows Server 2003, Windows Server 2003 64-bit Edition, and the Exchange Routing Engine component of Exchange Server 2003, allows remote malicious users to execute arbitrary code via a mal...
Microsoft Exchange Server 2003
Microsoft Windows Server 2003 -
Microsoft Windows Server 2003 R2
Microsoft Windows Xp
668
VMScore
CVE-2006-0002
Unspecified vulnerability in Microsoft Outlook 2000 through 2003, Exchange 5.0 Server SP2 and 5.5 SP4, Exchange 2000 SP3, and Office allows remote malicious users to execute arbitrary code via an e-mail message with a crafted Transport Neutral Encapsulation Format (TNEF) MIME att...
Microsoft Exchange Server 5.0
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
Microsoft Office 2000
Microsoft Office 2003
Microsoft Office Xp
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Outlook 2003
534
VMScore
CVE-2003-0904
Microsoft Exchange 2003 and Outlook Web Access (OWA), when configured to use NTLM authentication, does not properly reuse HTTP connections, which can cause OWA users to view mailboxes of other users when Kerberos has been disabled as an authentication method for IIS 6.0, e.g. whe...
Microsoft Exchange Server 2003
Microsoft Sharepoint Services 2.0
Microsoft Windows Server 2003
Microsoft Windows Server 2003 -
Microsoft Windows Server 2003 R2
585
VMScore
CVE-2005-0420
Microsoft Outlook Web Access (OWA), when used with Exchange, allows remote malicious users to redirect users to arbitrary URLs for login via a link to the owalogon.asp application.
Microsoft Exchange Server 2003
1 EDB exploit
435
VMScore
CVE-2008-1547
Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access (OWA) for Exchange Server 2003 SP2 (aka build 6.5.7638) allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter.
Microsoft Exchange Server 2003
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »