CVSS: 5.0EPSS: 96%CPEs: 7EXPL: 0CVE-2002-0055
https://notcve.org/view.php?id=CVE-2002-0055
SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request. El servicio SMTP en Windows 2000/XP Professional y Exchange 2000 permite a atacantes remotos provocar denegación de servico mediante un comando con una petición transferencia de datos malformada. • http://marc.info/?l=bugtraq&m=101558498401274&w=2 http://www.iss.net/security_center/static/8307.php http://www.securityfocus.com/bid/4204 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-012 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A30 • CWE-669: Incorrect Resource Transfer Between Spheres •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2002-0049
https://notcve.org/view.php?id=CVE-2002-0049
Microsoft Exchange Server 2000 System Attendant gives "Everyone" group privileges to the WinReg key, which could allow remote attackers to read or modify registry keys. Microsoft Exchange Server 2000 System Attendant da a el grupo "Todos" privilegios para modificar las claves del registro, lo que podría permitir a atacantes remotos leer o modifcar claves del registro. • http://www.osvdb.org/2042 http://www.securityfocus.com/bid/4053 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-003 https://exchange.xforce.ibmcloud.com/vulnerabilities/8092 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1022 • CWE-269: Improper Privilege Management •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2001-0666
https://notcve.org/view.php?id=CVE-2001-0666
Outlook Web Access (OWA) in Microsoft Exchange 2000 allows an authenticated user to cause a denial of service (CPU consumption) via a malformed OWA request for a deeply nested folder within the user's mailbox. • http://www.securityfocus.com/bid/3368 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-049 https://exchange.xforce.ibmcloud.com/vulnerabilities/7168 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2001-0543
https://notcve.org/view.php?id=CVE-2001-0543
Memory leak in NNTP service in Windows NT 4.0 and Windows 2000 allows remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed posts. • http://www.securityfocus.com/bid/3183 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-043 https://exchange.xforce.ibmcloud.com/vulnerabilities/6977 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A334 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2001-1099
https://notcve.org/view.php?id=CVE-2001-1099
The default configuration of Norton AntiVirus for Microsoft Exchange 2000 2.x allows remote attackers to identify the recipient's INBOX file path by sending an email with an attachment containing malicious content, which includes the path in the rejection notice. • http://www.securityfocus.com/archive/1/212724 http://www.securityfocus.com/archive/1/213762 http://www.securityfocus.com/bid/3305 https://exchange.xforce.ibmcloud.com/vulnerabilities/7093 • CWE-434: Unrestricted Upload of File with Dangerous Type •