Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5 allows an elevation of privilege vulnerability due to the way that Exchange Outlook Web Access (OWA) handles web requests, aka "Microsoft Exchange Cross-Site Scripting Vulnerability". This CVE ID is unique from CVE-2017-8560.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Exchange Server 跨站脚本漏洞
Vulnerability Description
Microsoft Exchange Server是美国微软(Microsoft)公司的一套电子邮件服务程序,它提供邮件存取、储存、转发,语音邮件,邮件过滤筛选等功能。 Microsoft Exchange Server中存在跨站脚本漏洞,该漏洞源于Microsoft Exchange Outlook Web Access (OWA)没有正确的处理Web请求。远程攻击者可利用该漏洞注入任意的Web脚本或HTML。以下版本受到影响:Microsoft Exchange Server 2013 Cumulat
CVSS Information
N/A
Vulnerability Type
N/A