Lucene search
K

8 matches found

CNVD
CNVD
added 2020/03/23 12:0 a.m.5 views

Unspecified Vulnerability in Zimbra zm-mailbox

Zimbra zm-mailbox is a mailbox management tool from the American company Zimbra. A security vulnerability in the cs/service/account/AutoCompleteGal.java file in versions of Zimbra zm-mailbox prior to 8.8.15.p8 can be exploited by an attacker to request an arbitrary GAL account...

6.5CVSS6.9AI score0.0121EPSS
Exploits0References1
n0where
n0where
added 2017/05/05 4:18 a.m.95 views

Microsoft Exchange Service Abuse: Ruler

Microsoft Exchange Service Abuse Ruler is a tool that allows you to interact with Exchange servers through the MAPI/HTTP protocol. The main aim is abuse the client-side Outlook mail rules. “ Silentbreak did a great job with this attack and it has served us well. The only downside has been that it...

0.1AI score
Exploits0References1
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.31 views

CVE-2001-0660

Outlook Web Access OWA in Microsoft Exchange 5.5, SP4 and earlier, allows remote attackers to identify valid user email addresses by directly accessing a back-end function that processes the global address list GAL...

6.3AI score0.2199EPSS
Exploits0References4
CVE
CVE
added 2002/03/09 5:0 a.m.78 views

CVE-2001-0660

CVE-2001-0660 affects Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and earlier. The back-end function that processes the Global Address List (GAL) can be accessed without authentication, allowing remote attackers to identify valid user email addresses stored in the GAL. Connected sourc...

5CVSS6.4AI score0.2199EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2001/10/30 5:0 a.m.24 views

CVE-2001-0660

Outlook Web Access OWA in Microsoft Exchange 5.5, SP4 and earlier, allows remote attackers to identify valid user email addresses by directly accessing a back-end function that processes the global address list GAL...

5CVSS6.4AI score0.2199EPSS
Exploits0References4
CERT
CERT
added 2001/09/12 12:0 a.m.45 views

Microsoft Exchange Outlook Web Access fails to authenticate users when searching the Global Address List

Overview Microsoft Exchange servers that offer the Outlook Web Access service are vulnerable to an information disclosure vulnerability that can reveal any email address stored in the Global Address List. Description The Outlook Web Access OWA component of Microsoft Exchange allows users to acces...

5CVSS5.5AI score0.2199EPSS
Exploits0References3
securityvulns
securityvulns
added 2001/09/08 12:0 a.m.50 views

Доступ к глобальному списку адресов в Exchange 5.5 (unauthorized access)

Пожно получить доступ к глобальной адресной книге без авторизации через OWA...

2AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2001/09/07 12:0 a.m.51 views

Security Bulletin MS01-047

---------------------------------------------------------------------- Title: OWA Function Allows Unauthenticated User to Enumerate Global Address List Date: 06 September 2001 Software: Exchange 5.5 Impact: Information Disclosure Bulletin: MS01-047 Microsoft encourages customers to review the...

1.3AI score
Exploits0
Rows per page
Query Builder