Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft access vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-22304
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiAuthenticator OWA Agent for Microsoft version 2.2 and 2.1 may allow an unauthenticated malicious user to perform an XSS attack via crafted HTTP GET requests.
Fortinet Fortiauthenticator Agent For Microsoft Outlook Web Access 2.2
Fortinet Fortiauthenticator Agent For Microsoft Outlook Web Access 2.1
5
CVSSv2
CVE-2005-1052
Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote malicious users to spoof e-mail addresses.
Microsoft Outlook 2003
Microsoft Outlook Web Access 2003
6.8
CVSSv2
CVE-2010-3213
Cross-site request forgery (CSRF) vulnerability in Microsoft Outlook Web Access (owa/ev.owa) 2007 through SP2 allows remote malicious users to hijack the authentication of e-mail users for requests that perform Outlook requests, as demonstrated by setting the auto-forward rule.
Microsoft Outlook Web Access 2007
1 EDB exploit
4.3
CVSSv2
CVE-2008-2248
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote malicious users to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Outlook Web Access
5.8
CVSSv2
CVE-2010-2732
Open redirect vulnerability in the web interface in Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, 2010 Update 1, and 2010 Update 2 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka "...
Microsoft Forefront Unified Access Gateway 2010
7.5
CVSSv2
CVE-2018-12571
uniquesig0/InternalSite/InitParams.aspx in Microsoft Forefront Unified Access Gateway 2010 allows remote malicious users to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of URLs in the orig_url parameter, possibly causing a traffic amplification and/...
Microsoft Forefront Unified Access Gateway 2010
5.8
CVSSv2
CVE-2012-0146
Open redirect vulnerability in Microsoft Forefront Unified Access Gateway (UAG) 2010 SP1 and SP1 Update 1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka "UAG Blind HTTP Redirect Vulnerability."
Microsoft Forefront Unified Access Gateway 2010
5
CVSSv2
CVE-2012-0147
Microsoft Forefront Unified Access Gateway (UAG) 2010 SP1 and SP1 Update 1 does not properly configure the default web site, which allows remote malicious users to obtain sensitive information via a crafted HTTPS request, aka "Unfiltered Access to UAG Default Website Vulnera...
Microsoft Forefront Unified Access Gateway 2010
9.3
CVSSv2
CVE-2011-1969
Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 provides the MicrosoftClient.jar file containing a signed Java applet, which allows remote malicious users to execute arbitrary code on client machines via unspecified vectors, aka "Poiso...
Microsoft Forefront Unified Access Gateway 2010
5
CVSSv2
CVE-2011-2012
Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 does not properly validate session cookies, which allows remote malicious users to cause a denial of service (IIS outage) via unspecified network traffic, aka "Null Session Cookie Crash.&...
Microsoft Forefront Unified Access Gateway 2010
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »