- EPSS 37.06%
- Veröffentlicht 02.06.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:45
IIS 5.0 and Microsoft Exchange 2000 allow remote attackers to cause a denial of service (memory allocation error) by repeatedly sending a series of specially formatted URL's.
- EPSS 19.52%
- Veröffentlicht 12.03.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:22
Buffer overflow in Internet Mail Service (IMS) for Microsoft Exchange 5.5 and 5.0 allows remote attackers to conduct a denial of service via AUTH or AUTHINFO commands.
CVE-2000-1139
- EPSS 5.02%
- Veröffentlicht 09.01.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:14
The installation of Microsoft Exchange 2000 before Rev. A creates a user account with a known password, which could allow attackers to gain privileges, aka the "Exchange User Account" vulnerability.
- EPSS 14.79%
- Veröffentlicht 11.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:57
Microsoft Exchange Server 5.5 does not properly handle a MIME header with a blank charset specified, which allows remote attackers to cause a denial of service via a charset="" command, aka the "Malformed MIME Header" vulnerability.
- EPSS 14.63%
- Veröffentlicht 05.06.2000 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:51:55
Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such as BCC, Reply-To, Return-Path, or From.
- EPSS 5.15%
- Veröffentlicht 29.02.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:51:14
Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with responses by forging a Read Receipt request that is redirec...
- EPSS 13.33%
- Veröffentlicht 31.12.1999 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:35
Microsoft Exchange Server 5.5 and 5.0 does not properly handle (1) malformed NNTP data, or (2) malformed SMTP data, which allows remote attackers to cause a denial of service (application error).
CVE-1999-0993
- EPSS 6.94%
- Veröffentlicht 13.12.1999 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:28
Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.
- EPSS 26.1%
- Veröffentlicht 06.08.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:48:50
Microsoft Exchange 5.5 allows a remote attacker to relay email (i.e. spam) using encapsulated SMTP addresses, even if the anti-relaying features are enabled.
- EPSS 17.88%
- Veröffentlicht 01.12.1998 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:48:17
The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands.