ExchangeCVESearch 内部版本号由于太费时间,没有完全匹配完成,可通过Microsoft官网:docsmicrosoftcom/zh-cn/exchange/new-features/build-numbers-and-release-dates?view=exchserver-2019 进行匹配并写入文件“versionJudpy”的“interShortVersion”字段和“ExchangeProductName”字段,格式按照之前定义
Microsoft Exchange Server 2016 CU5 and Microsoft Exchange Server 2016 CU5 allow a spoofing vulnerability due to the way Outlook Web Access (OWA) validates web requests, aka "Microsoft Exchange Spoofing Vulnerability".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft exchange server 2016 |
IE haunted by ghosts of past bugs – plus remote-code exec holes that'll chill your blood
Microsoft has kicked out its December batch of software security fixes, the final Patch Tuesday of 2017. Redmond has addressed 32 CVE-listed vulnerabilities in Edge, Windows, and Office, as well as a hole in Internet Explorer last seen in the early-oughts. Get patching as soon as possible. Leading this month's Patch Tuesday charge is CVE-2017-11927, a bug in Windows that can be exploited by an attacker to snatch a victim's NTLM hash, which could be cracked offline to reveal their password. A mar...