Microsoft outlook_web_access 2003

CPE Details

Microsoft outlook_web_access 2003
2003
2007-08-28
19h32 +00:00
2007-09-14
15h36 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:microsoft:outlook_web_access:2003:*:*:*:*:*:*:*

Informations

Vendor

microsoft

Product

outlook_web_access

Version

2003

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2016-0028 2016-06-15 23h00 +00:00 Outlook Web Access (OWA) in Microsoft Exchange Server 2013 SP1, Cumulative Update 11, and Cumulative Update 12 and 2016 Gold and Cumulative Update 1 does not properly restrict loading of IMG elements, which makes it easier for remote attackers to track users via a crafted HTML e-mail message, aka "Microsoft Exchange Information Disclosure Vulnerability."
5.5
Medium
CVE-2008-2248 2008-07-08 21h00 +00:00 Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247.
4.3
CVE-2008-2143 2008-05-12 17h00 +00:00 Unspecified versions of Microsoft Outlook Web Access (OWA) use the Cache-Control: no-cache HTTP directive instead of no-store, which might cause web browsers that follow RFC-2616 to cache sensitive information.
1.9
CVE-2005-1052 2005-04-12 02h00 +00:00 Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote attackers to spoof e-mail addresses.
5