Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook web access 2007 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-3213
Cross-site request forgery (CSRF) vulnerability in Microsoft Outlook Web Access (owa/ev.owa) 2007 through SP2 allows remote malicious users to hijack the authentication of e-mail users for requests that perform Outlook requests, as demonstrated by setting the auto-forward rule.
Microsoft Outlook Web Access 2007
1 EDB exploit
4.3
CVSSv2
CVE-2008-2248
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote malicious users to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
Microsoft Outlook Web Access
4.3
CVSSv2
CVE-2010-2091
Microsoft Outlook Web Access (OWA) 8.2.254.0, when Internet Explorer 7 on Windows Server 2003 is used, does not properly handle the id parameter in a Folder IPF.Note action to the default URI, which might allow remote malicious users to obtain sensitive information or conduct cro...
Microsoft Exchange Server 2007
1 EDB exploit
6.8
CVSSv2
CVE-2007-0220
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2000 SP3, and 2003 SP1 and SP2 allows remote malicious users to execute arbitrary scripts, spoof content, or obtain sensitive information via certain UTF-encoded, script-based e-mail...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
4.3
CVSSv2
CVE-2008-2247
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote malicious users to inject arbitrary web script or HTML via unspecified e-mail fields, a different vulnerability than CVE-2008-2248.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2007
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started