CVE-2017-11932
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-11932
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Microsoft Exchange Server 2016 CU5 and Microsoft Exchange Server 2016 CU5 allow a spoofing vulnerability due to the way Outlook Web Access (OWA) validates web requests, aka "Microsoft Exchange Spoofing Vulnerability".
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Exchange Server 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Exchange Server 2016是美国微软(Microsoft)公司的一套电子邮件服务程序,它提供邮件存取、储存、转发,语音邮件,邮件过滤筛选等功能。CU6和CU7是其中的2个累积更新。 Microsoft Exchange Server 2016 CU6和2016 CU7中存在安全漏洞,该漏洞源于程序没有正确的处理Web请求。攻击者可利用该漏洞该漏洞实施脚本或内容注入攻击,诱使用户泄露敏感信息,或将用户重定向到恶意的网站。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Microsoft Corporation | Microsoft Exchange Server | Microsoft Exchange Server 2016 CU5 and Microsoft Exchange Server 2016 CU5 | - |
II. Public POCs for CVE-2017-11932
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-11932
请登录查看更多情报信息。
Same Patch Batch · Microsoft Corporation · 2017-12-12 · 32 CVEs total
| CVE-2017-11908 | Microsoft Windows Edge和Microsoft ChakraCore 安全漏洞 | |
| CVE-2017-11939 | Microsoft Office 2016 Click-to-Run 信息泄露漏洞 | |
| CVE-2017-11936 | Microsoft SharePoint Enterprise Server 权限许可和访问控制问题漏洞 | |
| CVE-2017-11935 | Microsoft Office 2016 Click-to-Run 安全漏洞 | |
| CVE-2017-11934 | Microsoft Office 信息泄露漏洞 | |
| CVE-2017-11930 | Microsoft Windows Internet Explorer和Microsoft ChakraCore 安全漏洞 | |
| CVE-2017-11927 | Microsoft Windows 安全漏洞 | |
| CVE-2017-11919 | Microsoft Windows Edge和Internet Explorer和Microsoft ChakraCore 信息泄露漏洞 | |
| CVE-2017-11918 | Microsoft Windows Edge和Microsoft ChakraCore 安全漏洞 | |
| CVE-2017-11916 | Microsoft ChakraCore 安全漏洞 | |
| CVE-2017-11914 | Microsoft Windows Edge和Microsoft ChakraCore 安全漏洞 | |
| CVE-2017-11913 | Microsoft Windows Internet Explorer Scripting引擎安全漏洞 | |
| CVE-2017-11912 | Microsoft Windows Edge和Internet Explorer 安全漏洞 | |
| CVE-2017-11911 | Microsoft Windows Edge和Microsoft ChakraCore 安全漏洞 | |
| CVE-2017-11910 | Microsoft Windows Edge和Microsoft ChakraCore 安全漏洞 | |
| CVE-2017-11909 | Microsoft Windows Edge和Microsoft ChakraCore 安全漏洞 | |
| CVE-2017-11885 | Microsoft Windows RPC 安全漏洞 | |
| CVE-2017-11907 | Microsoft Windows Internet Explorer scripting引擎安全漏洞 | |
| CVE-2017-11906 | Microsoft Windows Internet Explorer scripting引擎信息泄露漏洞 | |
| CVE-2017-11905 | Microsoft Windows Edge和Microsoft ChakraCore 安全漏洞 |
Showing top 20 of 32 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2017-11932
No comments yet