Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook web access vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2006-4868
Stack-based buffer overflow in the Vector Graphics Rendering engine (vgx.dll), as used in Microsoft Outlook and Internet Explorer 6.0 on Windows XP SP2, and possibly other versions, allows remote malicious users to execute arbitrary code via a Vector Markup Language (VML) file wi...
Microsoft Internet Explorer 6.0
Microsoft Outlook 2003
Microsoft Internet Explorer 5.0.1
3 EDB exploits
1 Github repository
2.6
CVSSv2
CVE-2006-1193
Cross-site scripting (XSS) vulnerability in Microsoft Exchange Server 2000 SP1 through SP3, when running Outlook Web Access (OWA), allows user-assisted remote malicious users to inject arbitrary HTML or web script via unknown vectors related to "HTML parsing."
Microsoft Exchange Server 2000
1 EDB exploit
4.3
CVSSv2
CVE-2010-2091
Microsoft Outlook Web Access (OWA) 8.2.254.0, when Internet Explorer 7 on Windows Server 2003 is used, does not properly handle the id parameter in a Folder IPF.Note action to the default URI, which might allow remote malicious users to obtain sensitive information or conduct cro...
Microsoft Exchange Server 2007
1 EDB exploit
4.3
CVSSv2
CVE-2005-0563
Cross-site scripting (XSS) vulnerability in Microsoft Outlook Web Access (OWA) component in Exchange Server 5.5 allows remote malicious users to inject arbitrary web script or HTML via an email message with an encoded javascript: URL ("javAsc
ript:") i...
Microsoft Exchange Server 5.5
6.8
CVSSv2
CVE-2007-0220
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2000 SP3, and 2003 SP1 and SP2 allows remote malicious users to execute arbitrary scripts, spoof content, or obtain sensitive information via certain UTF-encoded, script-based e-mail...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
4.3
CVSSv2
CVE-2004-0203
Cross-site scripting (XSS) vulnerability in Outlook Web Access for Exchange Server 5.5 Service Pack 4 allows remote malicious users to insert arbitrary script and spoof content in HTML email or web caches via an HTML redirect query.
Microsoft Exchange Server 5.5
5.8
CVSSv2
CVE-2005-0420
Microsoft Outlook Web Access (OWA), when used with Exchange, allows remote malicious users to redirect users to arbitrary URLs for login via a link to the owalogon.asp application.
Microsoft Exchange Server 2003
1 EDB exploit
4.3
CVSSv2
CVE-2008-1547
Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access (OWA) for Exchange Server 2003 SP2 (aka build 6.5.7638) allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter.
Microsoft Exchange Server 2003
1 EDB exploit
7.5
CVSSv2
CVE-2001-0340
An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and Internet Explorer allows malicious users to execute malicious script code against a user's mailbox via a message attachment that contains HTML code, which is executed automatica...
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
5
CVSSv2
CVE-2001-0660
Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and previous versions, allows remote malicious users to identify valid user email addresses by directly accessing a back-end function that processes the global address list (GAL).
Microsoft Exchange Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »