Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft exchange server 2000 vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv2
CVE-2009-0085
The Secure Channel (aka SChannel) authentication component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008, when certificate authentication is used, does not properly validate the client's key exchange data in Trans...
Microsoft Windows Xp
Microsoft Windows Vista Gold
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
6.8
CVSSv2
CVE-2007-0220
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2000 SP3, and 2003 SP1 and SP2 allows remote malicious users to execute arbitrary scripts, spoof content, or obtain sensitive information via certain UTF-encoded, script-based e-mail...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
6.4
CVSSv2
CVE-2010-1689
The DNS implementation in smtpsvc.dll prior to 6.0.2600.5949 in Microsoft Windows 2000 SP4 and previous versions, Windows XP SP3 and previous versions, Windows Server 2003 SP2 and previous versions, Windows Server 2008 SP2 and previous versions, Windows Server 2008 R2, Exchange S...
Microsoft Windows 2000 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
6.4
CVSSv2
CVE-2010-1690
The DNS implementation in smtpsvc.dll prior to 6.0.2600.5949 in Microsoft Windows 2000 SP4 and previous versions, Windows XP SP3 and previous versions, Windows Server 2003 SP2 and previous versions, Windows Server 2008 SP2 and previous versions, Windows Server 2008 R2, Exchange S...
Microsoft Windows 2000 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
6.4
CVSSv2
CVE-2002-0049
Microsoft Exchange Server 2000 System Attendant gives "Everyone" group privileges to the WinReg key, which could allow remote malicious users to read or modify registry keys.
Microsoft Exchange Server 2000
6
CVSSv2
CVE-2003-0904
Microsoft Exchange 2003 and Outlook Web Access (OWA), when configured to use NTLM authentication, does not properly reuse HTTP connections, which can cause OWA users to view mailboxes of other users when Kerberos has been disabled as an authentication method for IIS 6.0, e.g. whe...
Microsoft Sharepoint Services 2.0
Microsoft Exchange Server 2003
Microsoft Windows Server 2003 -
Microsoft Windows Server 2003
Microsoft Windows Server 2003 R2
5.1
CVSSv2
CVE-2003-0813
A multi-threaded race condition in the Windows RPC DCOM functionality with the MS03-039 patch installed allows remote malicious users to cause a denial of service (crash or reboot) by causing two threads to process the same RPC request, which causes one thread to use memory after...
Microsoft Windows 2000
Microsoft Windows Xp -
Microsoft Windows 98 -
Microsoft Windows Nt 4.0
Microsoft Windows Server 2003
5
CVSSv2
CVE-2010-0024
The SMTP component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Server 2008 Gold, SP2, and R2, and Exchange Server 2003 SP2, does not properly parse MX records, which allows remote DNS servers to cause a denial of service (service outage) via a crafted resp...
Microsoft Windows 2000 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 -
Microsoft Windows 2003 Server -
Microsoft Windows Server 2008 -
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
5
CVSSv2
CVE-2010-0025
The SMTP component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Server 2008 Gold, SP2, and R2, and Exchange Server 2000 SP3, does not properly allocate memory for SMTP command replies, which allows remote malicious users to read fragments of e-mail messages...
Microsoft Windows 2000 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 -
Microsoft Windows 2003 Server -
Microsoft Windows Server 2008 -
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
5
CVSSv2
CVE-2009-0099
The Electronic Messaging System Microsoft Data Base (EMSMDB32) provider in Microsoft Exchange 2000 Server SP3 and Exchange Server 2003 SP2, as used in Exchange System Attendant, allows remote malicious users to cause a denial of service (application outage) via a malformed MAPI c...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »