Searching exchange software vulnerabilities

Denial of service to NT mail servers including

including | Exchange | Ipswitch | overflow | command | through | Mdaemon | service | servers | Denial | buffer | HELO | mail | SMTP |

Denial of service to NT mail servers including Ipswitch, Mdaemon, and Exchange through a buffer overflow in the SMTP HELO command.


Modifications to ACLs (Access Control Lists) in

Modifications | ACLs |

Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.


Microsoft Exchange Server 5.5 and 5.0 does not

Microsoft | properly | Exchange | handle | Server | does | not |

Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) malformed NNTP data, or (2) malformed SMTP data, which allows remote attackers to cause a denial of service (application error).


The installation of 1ArcServe Backup and Inocul

exchverifylog | installation | passwords | usernames | plaintext | 1ArcServe | contains | Inoculan | Exchange | modules | create | client | Backup | which | file | log |

The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, exchverify.log, which contains usernames and passwords in plaintext.


AV Option for MS Exchange Server option for Ino

InoculateIT | Exchange | Option | Server |

AV Option for MS Exchange Server option for InoculateIT 4.53, and possibly other versions, only scans the Inbox folder tree of a Microsoft Exchange server, which could allow viruses to escape detection if a user's rules cause the message to be moved to a different mailbox.


IIS 5.0 and Microsoft Exchange 2000 allow remot

Microsoft | Exchange | IIS |

IIS 5.0 and Microsoft Exchange 2000 allow remote attackers to cause a denial of service (memory allocation error) by repeatedly sending a series of specially formatted URL's.


Microsoft Exchange 2000 allows remote authentic

Microsoft | Exchange |

Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a large number of rapid requests, which consumes all of the licenses that are granted to Exchange by IIS.


The Content Scanner Server in F-Secure Anti-Vir

Anti-Virus | Microsoft | Exchange | F-Secure | Content | Scanner | Server |

The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01 and earlier, and F-Secure Internet Gatekeeper 6.32 and earlier allow remote attackers to cause a denial of service (service crash due to unhandled exception) via a certain malformed packet.


A bug in the HTML parser in a certain Microsoft

MailEssentials | MailSecurity | Microsoft | attackers | reported | products | Exchange | strings | service | library | various | certain | denial | queues | remain | parser | causes | emails | remote | which | allow | party | third | cause | used | HTML | mail | may | bug | IIS | via | GFI |

A bug in the HTML parser in a certain Microsoft HTML library, as used in various third party products, may allow remote attackers to cause a denial of service via certain strings, as reported in GFI MailEssentials for Exchange 9 and 10, and GFI MailSecurity for Exchange 8, which causes emails to remain in IIS or Exchange mail queues.


Buffer overflow in Kinesphere eXchange POP3 all

Kinesphere | attackers | arbitrary | overflow | eXchange | execute | Buffer | allows | remote | field | long | MAIL | POP3 | code | via |

Buffer overflow in Kinesphere eXchange POP3 allows remote attackers to execute arbitrary code via a long MAIL FROM field.


Microsoft Outlook Web Access (OWA), when used w

Microsoft | Outlook | Access | Web |

Microsoft Outlook Web Access (OWA), when used with Exchange, allows remote attackers to redirect users to arbitrary URLs for login via a link to the owalogon.asp application.


Stack overflow in Microsoft Exchange Server 200

Microsoft | Exchange | overflow | Server | Stack |

Stack overflow in Microsoft Exchange Server 2003 SP1 allows users to cause a denial of service (hang) by deleting or moving a folder with deeply nested subfolders, which causes Microsoft Exchange Information Store service (Store.exe) to hang as a result of a large number of recursive calls.


Directory traversal vulnerability in the Blueto

vulnerability | Bluetooth | Directory | traversal | exchange | object | file |

Directory traversal vulnerability in the Bluetooth file and object exchange (OBEX) services in Mac OS X 10.3.9 allows remote attackers to read arbitrary files.


Unspecified vulnerability in Microsoft Outlook

vulnerability | Unspecified | Microsoft | Outlook |

Unspecified vulnerability in Microsoft Outlook 2000 through 2003, Exchange 5.0 Server SP2 and 5.5 SP4, Exchange 2000 SP3, and Office allows remote attackers to execute arbitrary code via an e-mail message with a crafted Transport Neutral Encapsulation Format (TNEF) MIME attachment, related to message length validation.


Buffer overflow in the POP3 server in Kinespher

Corporation | Kinesphere | eXchange | overflow | before | Buffer | server | POP3 |

Buffer overflow in the POP3 server in Kinesphere Corporation eXchange before 5.0.060125 allows remote attackers to execute arbitrary code via a long RCPT TO argument.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Banner Exchange Script (aka Banner Exchange Network Script) 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the city parameter in (a) insertmember.php, and (2) a PHPSESSID cookie in (b) lostpassword.php, (c) gen_confirm_mem.php, and (d) index.php.


Unspecified vulnerability in Oracle Exchange co

vulnerability | Unspecified | E-Business | component | Exchange | Oracle | Suite |

Unspecified vulnerability in Oracle Exchange component in Oracle E-Business Suite 6.2.4 has unknown impact and remote attack vectors, aka Vuln# APPS01.


SQL injection vulnerability in directory.php in

vulnerability | directoryphp | attackers | arbitrary | injection | parameter | Exchange | queries | execute | remote | Script | Super | might | allow | Link | SQL | cat | via |

SQL injection vulnerability in directory.php in Super Link Exchange Script 1.0 might allow remote attackers to execute arbitrary SQL queries via the cat parameter.


Directory traversal vulnerability in make_thumb

make_thumbnailphp | vulnerability | sequences | attackers | arbitrary | traversal | Directory | parameter | Exchange | imgpath | allows | Script | remote | Super | files | read | Link | via |

Directory traversal vulnerability in make_thumbnail.php in Super Link Exchange Script 1.0 allows remote attackers to read arbitrary files via ".." sequences in the imgpath parameter.


Unspecified vulnerability in Oracle E-Business

vulnerability | Applications | Unspecified | E-Business | Oracle | Suite |

Unspecified vulnerability in Oracle E-Business Suite and Applications 6.2.3 has unknown impact and attack vectors related to Oracle Exchange, aka APPS02.


Software vulnerabilities results 1 to 20 of 108     
Page: 123456