6 matches found
CVE-2020-16969
An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who successfully exploited the vulnerability could use this to gain further information from a user. To exploit the vulnerability, an attacker could include...
CVE-2020-16969
CVE-2020-16969 affects Microsoft Exchange Server. It is an information-disclosure vulnerability rooted in how tokens are validated when handling certain messages. An attacker could craft OWA messages that are loaded from an attacker-controlled URL, enabling information disclosure without warning....
CVE-2020-16969 Microsoft Exchange Information Disclosure Vulnerability
...
Security Updates for Exchange (October 2020)
The Microsoft Exchange Server installed on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who...
Vulnerability fixed in Microsoft Exchange Server
Microsoft has fixed a vulnerability that could allow an authenticated malicious party potentially able to gain access to sensitive systems. Microsoft Exchange Server: |---------------|------|-------------------------------------| | CVE ID | CVSS | Impact |...
KLA11975 OSI vulnerability in Microsoft Exchange Server
An information disclosure vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2020-16969 Related products Microsoft-Exchange-Server CVE list CVE-2020-16969 high KB list 4581424 Solution Insta...