CVE-2016-0028

EPSS 21.12% · P96 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-0028

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Outlook Web Access (OWA) in Microsoft Exchange Server 2013 SP1, Cumulative Update 11, and Cumulative Update 12 and 2016 Gold and Cumulative Update 1 does not properly restrict loading of IMG elements, which makes it easier for remote attackers to track users via a crafted HTML e-mail message, aka "Microsoft Exchange Information Disclosure Vulnerability."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft Exchange 信息泄漏漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft Exchange Server是美国微软（Microsoft）公司的一套电子邮件服务程序，它提供邮件存取、储存、转发，语音邮件，邮件过滤筛选等功能。 Microsoft Exchange Server中存在信息泄露漏洞。远程攻击者可借助特制的HTML邮件利用该漏洞在线标识用户、采集用户指纹和跟踪用户。以下产品及版本受到影响：Microsoft Exchange Server 2013 SP1，Cumulative Update 11，Cumulative Update 12和2016

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2016-0028

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-0028

请登录查看更多情报信息。

http://www.securitytracker.com/id/1036106vdb-entryx_refsource_SECTRACK
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-079vendor-advisoryx_refsource_MS
https://nvd.nist.gov/vuln/detail/CVE-2016-0028

Same Patch Batch · n/a · 2016-06-16 · 94 CVEs total

CVE-2016-0200		Microsoft Internet Explorer 内存损坏漏洞
CVE-2016-5361		Libreswan 拒绝服务漏洞
CVE-2016-4167		Adobe DNG Software Development Kit 安全漏洞
CVE-2016-4163		多款Adobe产品安全漏洞
CVE-2016-4162		多款Adobe产品安全漏洞
CVE-2016-4161		多款Adobe产品安全漏洞
CVE-2016-4160		多款Adobe产品安全漏洞
CVE-2016-4159		Adobe ColdFusion 跨站脚本漏洞
CVE-2016-4164		Adobe Brackets 跨站脚本漏洞
CVE-2016-0199		Microsoft Internet Explorer 内存损坏漏洞
CVE-2016-0025		Microsoft Office 内存损坏漏洞
CVE-2016-3198		Microsoft Edge 安全功能绕过漏洞
CVE-2016-3199		Microsoft Edge Chakra JavaScript脚本引擎内存损坏漏洞
CVE-2016-3201		Microsoft Windows和Microsoft Edge PDF 信息泄露漏洞
CVE-2016-3202		Microsoft 脚本引擎内存损坏漏洞
CVE-2016-3203		Microsoft Windows和Microsoft Edge PDF 远程代码执行漏洞
CVE-2016-3205		Microsoft Internet Explorer 脚本引擎内存损坏漏洞
CVE-2016-3206		Microsoft Internet Explorer 脚本引擎内存损坏漏洞
CVE-2016-3207		Microsoft Internet Explorer 脚本引擎内存损坏漏洞
CVE-2016-3210		Microsoft Internet Explorer 脚本引擎内存损坏漏洞

Showing top 20 of 94 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2016-0028

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2016-0028

I. Basic Information for CVE-2016-0028

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-0028

III. Intelligence Information for CVE-2016-0028

Same Patch Batch · n/a · 2016-06-16 · 94 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2016-0028

Leave a comment