14 matches found
CVE-1999-0385
The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands...
CVE-1999-0682
Microsoft Exchange 5.5 allows a remote attacker to relay email i.e. spam using encapsulated SMTP addresses, even if the anti-relaying features are enabled...
EUVD-1999-0385
Malware in sbrugna...
Outlook Web Access with Exchange 5.5 SP4 XSS
Binary data 3014.prm...
Microsoft Windows SMTP Service fails to properly handle responses from the NTLM authentication layer
Overview A flaw in the authentication code of the SMTP service provided with Windows 2000 server and Exchange 5.5 may allow a user access to the SMTP service. This acess could be used to relay mail in violation of the SMTP server's security policy, or consume CPU resources on the SMTP server...
CVE-2001-0726
CVE-2001-0726 concerns Outlook Web Access (OWA) in Microsoft Exchange 5.5 Server. The issue arises when OWA is used with Internet Explorer and fails to properly detect certain inline script in HTML emails, which can allow remote attackers to perform arbitrary actions on a user’s Exchange mailbox....
CVE-2001-0660
CVE-2001-0660 affects Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and earlier. The back-end function that processes the Global Address List (GAL) can be accessed without authentication, allowing remote attackers to identify valid user email addresses stored in the GAL. Connected sourc...
CVE-2001-0726
Outlook Web Access OWA in Microsoft Exchange 5.5 Server, when used with Internet Explorer, does not properly detect certain inline script, which can allow remote attackers to perform arbitrary actions on a user's Exchange mailbox via an HTML e-mail message...
Доступ к глобальному списку адресов в Exchange 5.5 (unauthorized access)
Пожно получить доступ к глобальной адресной книге без авторизации через OWA...
Security Bulletin MS01-047
---------------------------------------------------------------------- Title: OWA Function Allows Unauthenticated User to Enumerate Global Address List Date: 06 September 2001 Software: Exchange 5.5 Impact: Information Disclosure Bulletin: MS01-047 Microsoft encourages customers to review the...
CVE-1999-0385
The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands...
CVE-1999-0385
The CVE-1999-0385 entry concerns Microsoft Exchange 5.5, where the LDAP bind function has a buffer overflow. The provided connected records reiterate that a remote attacker could cause a denial of service or execute commands via LDAP bind, indicating a remote, unauthenticated vector in Exchange 5...
CVE-1999-0682
Microsoft Exchange 5.5 allows a remote attacker to relay email i.e. spam using encapsulated SMTP addresses, even if the anti-relaying features are enabled...
CVE-1999-0385
The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands...