Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft exchange server 2003 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-1547
Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access (OWA) for Exchange Server 2003 SP2 (aka build 6.5.7638) allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter.
Microsoft Exchange Server 2003
1 EDB exploit
4.3
CVSSv2
CVE-2003-0712
Cross-site scripting (XSS) vulnerability in the HTML encoding for the Compose New Message form in Microsoft Exchange Server 5.5 Outlook Web Access (OWA) allows remote malicious users to execute arbitrary web script.
Microsoft Exchange Server 5.5
7.5
CVSSv2
CVE-2005-1987
Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Microsoft Exchange Server, allows remote malicious users to execute arbitrary code when CDOSYS or CDOEX processes an e-mail message with a large header name, as demonstrated using the "Cont...
Microsoft Exchange Server 2000
Microsoft Windows Server 2003 R2
Microsoft Windows Server 2003 -
Microsoft Windows Xp -
Microsoft Windows Server 2003 Sp1
Microsoft Windows 2000 -
7.5
CVSSv2
CVE-2005-0044
The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote malicious users to execute arbitrary code, aka the "Input Validation Vulnerability.&...
Microsoft Exchange Server 5.0
Microsoft Windows 98
Microsoft Windows 98se
Microsoft Windows Xp
Microsoft Windows 2000
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows Me
Microsoft Windows 2003 Server R2
Microsoft Windows 2003 Server Standard
Microsoft Windows 2003 Server Web
2.6
CVSSv2
CVE-2006-1193
Cross-site scripting (XSS) vulnerability in Microsoft Exchange Server 2000 SP1 through SP3, when running Outlook Web Access (OWA), allows user-assisted remote malicious users to inject arbitrary HTML or web script via unknown vectors related to "HTML parsing."
Microsoft Exchange Server 2000
1 EDB exploit
7.5
CVSSv2
CVE-2003-0352
Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote malicious users to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.
Microsoft Windows 2000
Microsoft Windows 2003 Server Web
Microsoft Windows Nt 4.0
Microsoft Windows 2003 Server R2
Microsoft Windows 2003 Server Standard
Microsoft Windows Xp
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows 2003 Server Enterprise
3 EDB exploits
2 Github repositories
7.5
CVSSv2
CVE-2002-0054
SMTP service in (1) Microsoft Windows 2000 and (2) Internet Mail Connector (IMC) in Exchange Server 5.5 does not properly handle responses to NTLM authentication, which allows remote malicious users to perform mail relaying via an SMTP AUTH command using null session credentials.
Microsoft Exchange Server 5.5
Microsoft Windows 2000 -
5
CVSSv2
CVE-2004-0120
The Microsoft Secure Sockets Layer (SSL) library, as used in Windows 2000, Windows XP, and Windows Server 2003, allows remote malicious users to cause a denial of service via malformed SSL messages.
Microsoft Windows 2000
Microsoft Windows 2003 Server R2
Microsoft Windows Xp
1 EDB exploit
5.1
CVSSv2
CVE-2003-0813
A multi-threaded race condition in the Windows RPC DCOM functionality with the MS03-039 patch installed allows remote malicious users to cause a denial of service (crash or reboot) by causing two threads to process the same RPC request, which causes one thread to use memory after...
Microsoft Windows 2000
Microsoft Windows Xp -
Microsoft Windows 98 -
Microsoft Windows Nt 4.0
Microsoft Windows Server 2003
7.1
CVSSv2
CVE-2009-0085
The Secure Channel (aka SChannel) authentication component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008, when certificate authentication is used, does not properly validate the client's key exchange data in Trans...
Microsoft Windows Xp
Microsoft Windows Vista Gold
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »