7.5
CVE-2001-0726
- EPSS 16.12%
- Veröffentlicht 06.12.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:54:50
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Outlook Web Access (OWA) in Microsoft Exchange 5.5 Server, when used with Internet Explorer, does not properly detect certain inline script, which can allow remote attackers to perform arbitrary actions on a user's Exchange mailbox via an HTML e-mail message.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Exchange Server Version5.5 Update-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 16.12% | 0.965 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.osvdb.org/5557
http://www.securityfocus.com/bid/3650
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-057
https://exchange.xforce.ibmcloud.com/vulnerabilities/7663