4 matches found
Microsoft Exchange Open Redirect
Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-EXCHANGE-SERVER-OPEN-REDIRECT-CVE-2016-3378.txt + ISR: Apparition Security Vendor: ================= www.microsoft.com Product: =========== Microsoft Exchange Server...
CVE-2016-3378
Open redirect vulnerability in Microsoft Exchange Server 2013 SP1, 2013 Cumulative Update 12, 2013 Cumulative Update 13, 2016 Cumulative Update 1, and 2016 Cumulative Update 2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL, aka...
CVE-2016-3378
CVE-2016-3378 describes an Open Redirect vulnerability in Microsoft Exchange Server. Affected products include Microsoft Exchange Server 2013 SP1 and 2013 CU12/CU13, and 2016 CU1/CU2. The issue lets an attacker supply a crafted URL that redirects users to arbitrary external sites, enabling phishi...
Microsoft Exchange Server CVE-2016-3378 Open Redirection Vulnerability
Description Microsoft .NET Framework is prone to an open-redirection vulnerability because it fails to properly sanitize user-supplied input. An attacker can leverage this issue by constructing a crafted URI and enticing a user to follow it. When an unsuspecting victim follows the link, they may ...