Lucene search
K

78 matches found

Prion
Prion
added 2017/10/23 1:29 a.m.21 views

Buffer overflow

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Exchange ActiveSync" component. It allows remote attackers to erase a device in opportunistic circumstances by hijacking a cleartext AutoDiscover V1 session during the setup of an Exchange accoun...

7.1CVSS4.7AI score0.01876EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/10/23 1:0 a.m.24 views

CVE-2017-7088

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Exchange ActiveSync" component. It allows remote attackers to erase a device in opportunistic circumstances by hijacking a cleartext AutoDiscover V1 session during the setup of an Exchange accoun...

4.7AI score0.01876EPSS
Exploits0References3
CVE
CVE
added 2017/10/23 1:0 a.m.80 views

CVE-2017-7088

The CVE-2017-7088 entry affects iOS prior to 11 in the Exchange ActiveSync (EAS) AutoDiscover V1 workflow. Root cause: a vulnerability allowing an attacker who can observe the AutoDiscover V1 session to hijack a cleartext exchange during Exchange account setup, enabling the attacker to erase the ...

7.1CVSS6AI score0.01876EPSS
Exploits0References3Affected Software1
Citrix
Citrix
added 2017/09/22 12:0 a.m.7 views

How to collect ActiveSync device logs (EAS logs) from Exchange

...

7.2AI score
Exploits0
CNVD
CNVD
added 2017/09/20 12:0 a.m.3 views

Apple iOS Exchange ActiveSync Authentication Vulnerability

Apple iOS is an operating system developed by Apple for mobile devices.Exchange ActiveSync is one of the Microsoft Exchange synchronization protocols. A security vulnerability exists in the Exchange ActiveSync component in versions of Apple iOS prior to 11. A remote attacker can exploit this...

7.1CVSS7.1AI score0.01876EPSS
Exploits0References1
rapid7community
rapid7community
added 2017/08/23 3:36 p.m.111 views

Vulnerability Management Market Disruptors

Gartners recent vulnerability management report provides a wealth of insight into vulnerability management VM tools and advice for how to build effective VM programs. Although VM tools and capabilities have changed since the reports last iteration in 2015, interestingly one thing hasnt: Gartners...

6.9AI score
Exploits0
Citrix
Citrix
added 2017/06/29 12:0 a.m.10 views

XenMobile 10.x : Addition of shared Mailbox in Secure Mail

Question: Does XenMobile 10.x support the addition of a shared Mailbox in Secure Mail For both iOS and Android ? Answer: Currently this is not supported on Secure Mail ActiveSync protocol officially doesn't support shared access/delegation. Hence, Secure Mail both iOS and Android also doesn’t cla...

6.8AI score
Exploits0
0day.today
0day.today
added 2017/04/12 12:0 a.m.64 views

Microsoft Office OneNote 2007 DLL Hijacking Vulnerability

Exploit for windows platform in category local exploits ------------------------------------------------------------------------ Microsoft Office OneNote 2007 DLL side loading vulnerability ------------------------------------------------------------------------ Yorick Koster, September 2015...

6.8AI score0.19075EPSS
Exploits2
Packet Storm
Packet Storm
added 2017/04/11 12:0 a.m.46 views

Microsoft Office OneNote 2007 DLL Hijacking

------------------------------------------------------------------------ Microsoft Office OneNote 2007 DLL side loading vulnerability ------------------------------------------------------------------------ Yorick Koster, September 2015...

0.19075EPSS
Exploits2
Citrix
Citrix
added 2017/03/29 12:0 a.m.8 views

Draft folder emails in Secure Mail not syncing with MS Exchange

Q: Users create drafts in Secure Mail but these do not get synced with MS Exchange and viewable in Outlook. After repeated attempts to amend and save the draft it will be deleted without being synced. Is this a known issue? A: With regard to the Draft folder syncing, there are limitation regardin...

7AI score
Exploits0
NVD
NVD
added 2016/04/18 12:59 a.m.19 views

CVE-2016-2415

exchange/eas/EasAutoDiscover.java in the Autodiscover implementation in Exchange ActiveSync in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to obtain sensitive information via a crafted application that triggers a spoofed response to a GET request, ak...

7.1CVSS5AI score0.00425EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/04/18 12:59 a.m.20 views

CVE-2016-2415

exchange/eas/EasAutoDiscover.java in the Autodiscover implementation in Exchange ActiveSync in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to obtain sensitive information via a crafted application that triggers a spoofed response to a GET request, ak...

7.1CVSS6.5AI score0.00425EPSS
Exploits0References3
Prion
Prion
added 2016/04/18 12:59 a.m.15 views

Design/Logic Flaw

exchange/eas/EasAutoDiscover.java in the Autodiscover implementation in Exchange ActiveSync in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to obtain sensitive information via a crafted application that triggers a spoofed response to a GET request, ak...

7.1CVSS6.3AI score0.00425EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/04/18 12:0 a.m.22 views

CVE-2016-2415

exchange/eas/EasAutoDiscover.java in the Autodiscover implementation in Exchange ActiveSync in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to obtain sensitive information via a crafted application that triggers a spoofed response to a GET request, ak...

5.3AI score0.00425EPSS
Exploits0References2
CVE
CVE
added 2016/04/18 12:0 a.m.44 views

CVE-2016-2415

Technical details for CVE-2016-2415 are not publicly provided in the supplied documents. The available records summarize an information-disclosure vulnerability in Exchange ActiveSync/Autodiscover without specifics on affected products, versions, root cause, or fixes. Monitor for updates.

7.1CVSS5.5AI score0.00425EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2016/04/07 12:0 a.m.3 views

Android Exchange ActiveSync Information Disclosure Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA for short. Exchange ActiveSync is one of the Microsoft Exchange synchronization protocols. An information disclosure vulnerability exists in Exchange ActiveSync for Android. A loca...

7.1CVSS6.1AI score0.00425EPSS
Exploits0References1
Fedora
Fedora
added 2015/11/23 11:21 p.m.62 views

[SECURITY] Fedora 21 Update: zarafa-7.1.14-1.fc21

The Zarafa Collaboration Platform is a Microsoft Exchange replacement. The Open Source Collaboration provides an integration with your existing Linux mail server, native mobile phone support by ActiveSync compatibility and a webaccess with 'Look & Feel' similar to Outlook using Ajax. Including an...

8.4CVSS1.6AI score0.04251EPSS
Exploits2
Fedora
Fedora
added 2015/06/05 11:48 p.m.33 views

[SECURITY] Fedora 21 Update: zarafa-7.1.12-2.fc21

The Zarafa Collaboration Platform is a Microsoft Exchange replacement. The Open Source Collaboration provides an integration with your existing Linux mail server, native mobile phone support by ActiveSync compatibility and a webaccess with 'Look & Feel' similar to Outlook using Ajax. Including an...

6.6CVSS1.6AI score0.00391EPSS
Exploits0
Fedora
Fedora
added 2015/06/05 11:41 p.m.52 views

[SECURITY] Fedora 20 Update: zarafa-7.1.12-2.fc20

The Zarafa Collaboration Platform is a Microsoft Exchange replacement. The Open Source Collaboration provides an integration with your existing Linux mail server, native mobile phone support by ActiveSync compatibility and a webaccess with 'Look & Feel' similar to Outlook using Ajax. Including an...

6.6CVSS1.6AI score0.00391EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/05/15 12:0 a.m.11 views

Apple iOS Version and Model Detection via ActiveSync

Binary data 8770.prm...

7.3AI score
Exploits0References1
Rows per page
Query Builder