5 matches found
CVE-2015-1631
Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to spoof meeting organizers via unspecified vectors, aka "Exchange Forged Meeting Request Spoofing Vulnerability."...
CVE-2015-1631
CVE-2015-1631 : Affects Microsoft Exchange Server 2013 SP1 and CU7. The vulnerability involves failure to properly verify the meeting organizer’s identity when processing meeting requests, allowing remote attackers to spoof meeting organizers via forged meeting requests (the Exchange Forged Meeti...
Microsoft Exchange Server Privilege Escalation Vulnerability (3040856)
This host is missing an important security update according to Microsoft Bulletin MS15-026. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
Microsoft Exchange Forged Meeting Request Spoofing (MS15-026; CVE-2015-1631)
A spoofing vulnerability exists in Microsoft Exchange Server. The vulnerability is caused when Microsoft Exchange Server fails to properly validate meeting organizer identity when accepting or modifying meeting requests. A remote attacker can exploit this issue by sending a specially crafted...
KLA10591 Code injection in Microsoft Exchange Server
Multiple XSS vulnerabilities were found in Microsoft Exchange Server. By exploiting these vulnerabilities malicious users can inject arbitrary web script or spoof user interface. These vulnerabilities can be exploited remotely via a specially designed URL, msgParam or other unknown vectors...