46 matches found
EnglishmansDentist Exploit Analysis
Introduction Introduction We are continuing our series of blog posts dissecting the exploits released by ShadowBrokers in April 2017. After the first two posts about the SMB exploits known as EternalChampion and EternalSynergy, we’ll move this time to analyze a different tool and we’ll focus on t...
EnglishmansDentist Exploit Analysis
Introduction We are continuing our series of blog posts dissecting the exploits released by ShadowBrokers in April 2017. After the first two posts about the SMB exploits known as EternalChampion and EternalSynergy, we’ll move this time to analyze a different tool and we’ll focus on the exploit...
Microsoft Outlook Web Access for Exchange Server 2003 'redir.asp' URI Redirection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31765/info Outlook Web Access is prone to a remote URI-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks. OWA 6.5 SP 2 is...
Outlook Web Access 2003 CSRF Vulnerability
No description provided by source. Exploit Title: Microsoft Office Outlook Web Access for Exchange Server 2003 XSRF Vulnerability Date: 07/20/2010 Author: anonymous Tested on: Microsoft Office Outlook Web Access for Exchange Server 2003 A cross-site request forgery vulnerability in Microsoft Offi...
Outlook Web Access 2003 Cross Site Request Forgery
Exploit Title: Microsoft Office Outlook Web Access for Exchange Server 2003 XSRF Vulnerability Date: 07/20/2010 Author: anonymous Tested on: Microsoft Office Outlook Web Access for Exchange Server 2003 A cross-site request forgery vulnerability in Microsoft Office Outlook Web Access for Exchange...
Microsoft Outlook Web Access for Exchange Server 2003 - Cross-Site Request Forgery
Microsoft Outlook Web Access for Exchange Server 2003 - Cross-Site Request Forgery source: https://www.securityfocus.com/bid/41843/info Microsoft Outlook Web Access for Exchange Server 2003 is prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker t...
Microsoft Outlook Web Access for Exchange Server 2003 - Cross-Site Request Forgery
source: https://www.securityfocus.com/bid/41843/info Microsoft Outlook Web Access for Exchange Server 2003 is prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain actions in the context of an authorized user's session and gain...
Windows NT NNTP Component Buffer Overflow
The Network News Transfer Protocol NNTP component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote attackers to execute arbitrary code via XPAT patterns, possibly related to improper length validation and an...
Windows NT NNTP Component Buffer Overflow
The Network News Transfer Protocol NNTP component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote attackers to execute arbitrary code via XPAT patterns, possibly related to improper length validation and an...
Microsoft Exchange and Windows SMTP Service Denial of Service Vulnerability (981832)
This host is missing a critical security update according to Microsoft Bulletin MS10-024. OpenVAS Vulnerability Test $Id: secpodms10-024.nasl 5361 2017-02-20 11:57:13Z cfi $ Microsoft Exchange and Windows SMTP Service Denial of Service Vulnerability 981832 Authors: Veerendra G Copyright: Copyrigh...
CVE-2008-1547
Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access OWA for Exchange Server 2003 SP2 aka build 6.5.7638 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter...
Open redirect
Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access OWA for Exchange Server 2003 SP2 aka build 6.5.7638 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter...
CVE-2008-1547
Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access OWA for Exchange Server 2003 SP2 aka build 6.5.7638 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter...
Microsoft Outlook Web Access for Exchange Server 2003 - redir.asp Open Redirection
Microsoft Outlook Web Access for Exchange Server 2003 - redir.asp Open Redirection source: https://www.securityfocus.com/bid/31765/info Outlook Web Access is prone to a remote URI-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploi...
Microsoft Outlook Web Access for Exchange Server 2003 - 'redir.asp' Open Redirection
source: https://www.securityfocus.com/bid/31765/info Outlook Web Access is prone to a remote URI-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks. OWA 6.5 SP 2 is vulnerable; other versions may also ...
Cross site scripting
Cross-site scripting XSS vulnerability in Outlook Web Access OWA for Exchange Server 2003 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified e-mail fields, a different vulnerability than CVE-2008-2248...
Cross site scripting
Cross-site scripting XSS vulnerability in Outlook Web Access OWA for Exchange Server 2003 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247...
CVE-2008-2247
Cross-site scripting XSS vulnerability in Outlook Web Access OWA for Exchange Server 2003 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified e-mail fields, a different vulnerability than CVE-2008-2248...
CVE-2008-2248
Cross-site scripting XSS vulnerability in Outlook Web Access OWA for Exchange Server 2003 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247...
CVE-2008-2247
CVE-2008-2247 is a cross-site scripting vulnerability in Outlook Web Access (OWA) for Microsoft Exchange Server 2003 SP2. The flaw arises from insufficient validation of e-mail fields when opening mail within an OWA client, allowing an attacker to inject arbitrary script and potentially elevate p...