Microsoft Exchange 2000 Server SP3, Exchange Server 2003 SP2, and Exchange Server 2007 SP1 do not properly interpret Transport Neutral Encapsulation (TNEF) properties, which allows remote attackers to execute arbitrary code via a crafted TNEF message, aka "Memory Corruption Vulnerability."
7.5AI Score
0.552EPSS
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server. This CVE ID is unique from CVE-2018-8151.
9.8CVSS
6.9AI Score
0.1EPSS
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server.
9.8CVSS
9.4AI Score
0.548EPSS
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server.
9.8CVSS
9.4AI Score
0.362EPSS
A remote code execution vulnerability exists in Microsoft Exchange through the deserialization of metadata via PowerShell, aka 'Microsoft Exchange Remote Code Execution Vulnerability'.
9.8CVSS
9.7AI Score
0.045EPSS
9.1CVSS
8.9AI Score
0.034EPSS
9.1CVSS
8.8AI Score
0.036EPSS
9CVSS
8.3AI Score
0.004EPSS
9.1CVSS
8.8AI Score
0.036EPSS
9.8CVSS
9.2AI Score
0.035EPSS
9CVSS
9.2AI Score
0.002EPSS
9.8CVSS
9.2AI Score
0.002EPSS