Microsoft

Exchange Server

233 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 37.06%
  • Veröffentlicht 02.06.2001 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:53:45

IIS 5.0 and Microsoft Exchange 2000 allow remote attackers to cause a denial of service (memory allocation error) by repeatedly sending a series of specially formatted URL's.

  • EPSS 19.52%
  • Veröffentlicht 12.03.2001 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:49:22

Buffer overflow in Internet Mail Service (IMS) for Microsoft Exchange 5.5 and 5.0 allows remote attackers to conduct a denial of service via AUTH or AUTHINFO commands.

  • EPSS 5.02%
  • Veröffentlicht 09.01.2001 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:53:14

The installation of Microsoft Exchange 2000 before Rev. A creates a user account with a known password, which could allow attackers to gain privileges, aka the "Exchange User Account" vulnerability.

Exploit
  • EPSS 14.79%
  • Veröffentlicht 11.12.2000 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:52:57

Microsoft Exchange Server 5.5 does not properly handle a MIME header with a blank charset specified, which allows remote attackers to cause a denial of service via a charset="" command, aka the "Malformed MIME Header" vulnerability.

  • EPSS 14.63%
  • Veröffentlicht 05.06.2000 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:51:55

Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From.

  • EPSS 5.15%
  • Veröffentlicht 29.02.2000 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:51:14

Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with responses by forging a Read Receipt request that is redirec...

  • EPSS 13.33%
  • Veröffentlicht 31.12.1999 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:49:35

Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) malformed NNTP data, or (2) malformed SMTP data, which allows remote attackers to cause a denial of service (application error).

  • EPSS 6.94%
  • Veröffentlicht 13.12.1999 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:49:28

Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.

  • EPSS 26.1%
  • Veröffentlicht 06.08.1999 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:48:50

Microsoft Exchange 5.5 allows a remote attacker to relay email (i.e. spam) using encapsulated SMTP addresses, even if the anti-relaying features are enabled.

  • EPSS 17.88%
  • Veröffentlicht 01.12.1998 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:48:17

The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands.