CVE-2025-58107

In Microsoft Exchange through 2019, Exchange ActiveSync EAS configurations on on-premises servers may transmit sensitive data from Samsung mobile devices in cleartext, including the user's name, e-mail address, device ID, bearer token, and base64-encoded password...

EUVD-2025-208168

In Microsoft Exchange through 2019, Exchange ActiveSync EAS configurations on on-premises servers may transmit sensitive data from Samsung mobile devices in cleartext, including the user's name, e-mail address, device ID, bearer token, and base64-encoded password...

CVE-2025-58107

In Microsoft Exchange through 2019, Exchange ActiveSync EAS configurations on on-premises servers may transmit sensitive data from Samsung mobile devices in cleartext, including the user's name, e-mail address, device ID, bearer token, and base64-encoded password...

CVE-2025-58107

In Microsoft Exchange through 2019, Exchange ActiveSync EAS configurations on on-premises servers may transmit sensitive data from Samsung mobile devices in cleartext, including the user's name, e-mail address, device ID, bearer token, and base64-encoded password...

PT-2026-22591

Name of the Vulnerable Software and Affected Versions Microsoft Exchange versions prior to 2020 Description Exchange ActiveSync EAS configurations on on-premises servers may transmit sensitive data in cleartext from Samsung mobile devices. This data includes the user's name, email address, device...

CVE-2025-58107

In Microsoft Exchange through 2019, Exchange ActiveSync EAS configurations on on-premises servers may transmit sensitive data from Samsung mobile devices in cleartext, including the user's name, e-mail address, device ID, bearer token, and base64-encoded password...

Microsoft Exchange 安全漏洞

Microsoft Exchange is an enterprise-level email server provided by the American company Microsoft. Microsoft Exchange 2019 and earlier versions have a security vulnerability. This vulnerability stems from the fact that the Exchange ActiveSync configuration on local servers may transmit sensitive...

EUVD-2009-1674

Malware in sbrugna...

EUVD-2016-3497

Malware in sbrugna...

EUVD-2017-16126

Malware in sbrugna...

CVE-2016-11043

An issue was discovered on Samsung mobile devices with M6.0 software. The S/MIME implementation in EAS uses DES where 3DES is intended. The Samsung ID is SVE-2016-5871 June 2016...

XenMobile XNC not Displaying in the ActiveSync Logs

The Allow or Deny entries are not appearing in the logs for XenMobile NetScaler Connector XNC program on XenMobile...

Secure Mail - Unable to sync emails - Log Error: Caught ParserException in with Sync

Emails do not sync. Reinstalling Secure Mail does not resolve the issue. Secure Mail logs show: " 2019-07-16T10:40:23.024-0700 ",SecureMail,ERROR 2,-ActiveSyncEngine postSynchronousCommandWithData:contentType:withParser:withCommandString:withTimeout:error:,"Caught ParserException in with...

Office 365 Spy Campaign Targets US Military Defense

A new threat actor, dubbed DEV-0343, has been spotted attacking U.S. and Israeli defense technology companies, Persian Gulf ports of entry and global maritime transportation companies with ties to the Middle East. The threat actor’s goal is Microsoft Office 365 account takeovers. Microsoft, which...

Office 365 User Enumeration

Enumerate valid usernames email addresses from Office 365 using ActiveSync. Differences in the HTTP Response code and HTTP Headers can be used to differentiate between: - Valid Username Response code 401 - Valid Username and Password without 2FA Response Code 200 - Valid Username and Password wit...

Secure Mail Test Tool

Citrix Endpoint Management, using technology formerly called XenMobile Introduction Secure Mail Test Toolis designed to help troubleshoot the ActiveSync servers for their readiness to be deployed with XenMobile environment. This tool can be used specifically for ensuring the proper functioning of...

O365Enum - Enumerate Valid Usernames From Office 365 Using ActiveSync, Autodiscover V1, Or Office.Com Login Page

Enumerate valid usernames from Office 365 using ActiveSync, Autodiscover, or office.com login page. Usage o365enum will read usernames from the file provided as first parameter. The file should have one username per line. The output is CSV-based for easier parsing. Valid status can be 0 invalid...

Unspecified Vulnerability in Apple iOS Exchange ActiveSync

Apple iOS is an operating system developed by Apple for mobile devices.Exchange ActiveSync is one of the Microsoft Exchange synchronization protocols. A security vulnerability exists in the Exchange ActiveSync component in Apple iOS versions prior to 12.2. No details of the vulnerability are...

CVE-2017-7088

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Exchange ActiveSync" component. It allows remote attackers to erase a device in opportunistic circumstances by hijacking a cleartext AutoDiscover V1 session during the setup of an Exchange accoun...

Buffer overflow

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Exchange ActiveSync" component. It allows remote attackers to erase a device in opportunistic circumstances by hijacking a cleartext AutoDiscover V1 session during the setup of an Exchange accoun...