[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247862

 
 

909

 
 

194603

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

Elevation of Privilege vulnerability in Microsoft Exchange Server - CVE-2019-0686

ID: oval:org.secpod.oval:def:50707Date: (C)2019-02-13   (M)2024-03-26
Class: VULNERABILITYFamily: windows




The host is installed with Microsoft Exchange Server 2010, 2013 or 2016 and is prone to an elevation of privilege vulnerability. A flaw is present in the application, which fails to properly handle the Exchange Web Services (EWS) and Push Notifications. Successful exploitation allows attackers to gain the same rights as any other user of the Exchange server.

Platform:
Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8.1
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Product:
Microsoft Exchange Server 2010
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
Reference:
CVE-2019-0686
CVE    1
CVE-2019-0686
CPE    4
cpe:/a:microsoft:exchange_server:2013
cpe:/a:microsoft:exchange:2010
cpe:/a:microsoft:exchange:2010:sp3
cpe:/a:microsoft:exchange_server:2016
...

© SecPod Technologies