Lucene search
K

4 matches found

CERT
CERT
added 2022/10/03 12:0 a.m.730 views

Microsoft Exchange vulnerable to server-side request forgery and remote code execution.

Overview Microsoft Exchange Server 2019, Exchange Server 2016 and Exchange Server 2013 are vulnerable to a server-side request forgery SSRF attack and remote code execution. An authenticated attacker can use the combination of these two vulnerabilities to elevate privileges and execute arbitrary...

8.8CVSS9.4AI score0.99964EPSS
Exploits16References6
Hacker One
Hacker One
added 2021/07/19 9:49 p.m.5 views

Rockstar Games: Open Redirection effects autodiscover.rockstargames.com

In a report, a researcher identified an open redirection vulnerability in the Office365 Autodiscover service of the rockstargames.com domain. The issue was resolved through updates from Microsoft and internal configuration changes...

7AI score
Exploits0
Kitploit
Kitploit
added 2016/10/19 1:30 p.m.125 views

Ruler - A Tool To Abuse Exchange Services

Ruler is a tool that allows you to interact with Exchange servers through the MAPI/HTTP protocol. The main aim is abuse the client-side Outlook mail rules as described in: Silentbreak blog Silentbreak did a great job with this attack and it has served us well. The only downside has been that it...

7.8AI score
Exploits0References1
Microsoft KB
Microsoft KB
added 2016/07/12 7:0 a.m.44 views

MS16-088: Description of the security update for Outlook 2016: July 12, 2016

MS16-088: Description of the security update for Outlook 2016: July 12, 2016 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft...

9.3CVSS7.9AI score0.2037EPSS
Exploits0
Rows per page
Query Builder