Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
exchange server vulnerabilities and exploits
(subscribe to this query)
790
VMScore
CVE-2006-0027
Unspecified vulnerability in Microsoft Exchange allows remote malicious users to execute arbitrary code via e-mail messages with crafted (1) vCal or (2) iCal Calendar properties.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2000
668
VMScore
CVE-2001-0340
An interaction between the Outlook Web Access (OWA) service in Microsoft Exchange 2000 Server and Internet Explorer allows malicious users to execute malicious script code against a user's mailbox via a message attachment that contains HTML code, which is executed automatica...
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
801
VMScore
CVE-2020-16875
<p>A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet arguments.</p> <p>An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. Exploitation ...
Microsoft Exchange Server 2019
Microsoft Exchange Server 2016
2 Articles
NA
CVE-2022-41123
Microsoft Exchange Server Elevation of Privilege Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
1 Article
445
VMScore
CVE-1999-1043
Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) malformed NNTP data, or (2) malformed SMTP data, which allows remote malicious users to cause a denial of service (application error).
Microsoft Exchange Server 5.0
Microsoft Exchange Server 5.5
828
VMScore
CVE-2018-8265
A remote code execution vulnerability exists in the way Microsoft Exchange software parses specially crafted email messages, aka "Microsoft Exchange Remote Code Execution Vulnerability." This affects Microsoft Exchange Server.
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
NA
CVE-2023-36439
Microsoft Exchange Server Remote Code Execution Vulnerability
Microsoft Exchange Server 2019
Microsoft Exchange Server 2016
445
VMScore
CVE-2001-1319
Microsoft Exchange 5.5 2000 allows remote malicious users to cause a denial of service (hang) via exceptional BER encodings for the LDAP filter type field, as demonstrated by the PROTOS LDAPv3 test suite.
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
383
VMScore
CVE-2008-2247
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote malicious users to inject arbitrary web script or HTML via unspecified e-mail fields, a different vulnerability than CVE-2008-2248.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
605
VMScore
CVE-2007-0220
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2000 SP3, and 2003 SP1 and SP2 allows remote malicious users to execute arbitrary scripts, spoof content, or obtain sensitive information via certain UTF-encoded, script-based e-mail...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »