Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Summary
TitleVulnerabilities in Microsoft Exchange Server Could Allow Information Disclosure (3089250)
Informations
NameMS15-103First vendor Publication2015-09-08
VendorMicrosoftLast vendor Modification2015-09-08
Severity (Vendor) ImportantRevision1.0

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Severity Rating: Important
Revision Note: V1.0 (September 8, 2015): Bulletin published.
Summary: This security update resolves vulnerabilities in Microsoft Exchange Server. The most severe of the vulnerabilities could allow information disclosure if Outlook Web Access (OWA) fails to properly handle web requests, and sanitize user input and email content.

Original Source

Url : https://technet.microsoft.com/en-us/library/security/MS15-103

CWE : Common Weakness Enumeration

%idName
67 %CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)
33 %CWE-200Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Application3

Information Assurance Vulnerability Management (IAVM)

DateDescription
2015-09-10IAVM : 2015-B-0109 - Multiple Vulnerabilities in Microsoft Exchange Server (MS15-103)
Severity : Category II - VMSKEY : V0061367

Nessus® Vulnerability Scanner

DateDescription
2015-09-10Name : The remote Microsoft Exchange server is affected by multiple information disc...
File : smb_nt_ms15-103.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
DateInformations
2016-12-22 09:25:40
  • Multiple Updates
2015-10-18 17:26:44
  • Multiple Updates
2015-09-11 13:25:58
  • Multiple Updates
2015-09-09 21:31:02
  • Multiple Updates
2015-09-09 09:28:53
  • Multiple Updates
2015-09-08 21:31:38
  • Multiple Updates
2015-09-08 21:16:48
  • First insertion