Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Microsoft Exchange Server 2013 SP1 and Cumulative Update 6 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "OWA XSS Vulnerability," a different vulnerability than CVE-2014-6326.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft OWA XSS 漏洞
Vulnerability Description
Microsoft Exchange Server是美国微软(Microsoft)公司的一套电子邮件服务程序,它提供邮件存取、储存、转发,语音邮件,邮件过滤筛选等功能。 当Microsoft Exchange Server未能正确验证输入时,存在特权提升漏洞。成功利用该漏洞的攻击者可以在当前用户的上下文中运行脚本。以下软件受到影响:Microsoft Exchange Server 2013 SP1和Cumulative Update 6。
CVSS Information
N/A
Vulnerability Type
N/A