CVSS: 9.3EPSS: 75%CPEs: 13EXPL: 1CVE-2009-1534 – Microsoft OWC Spreadsheet - HTMLURL Buffer Overflow (MS09-043)
https://notcve.org/view.php?id=CVE-2009-1534
12 Aug 2009 — Buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2000 Web Components SP3, Office XP Web Components SP3, BizTalk Server 2002, and Visual Studio .NET 2003 SP1 allows remote attackers to execute arbitrary code via crafted property values, aka "Office Web Components Buffer Overflow Vulnerability." Desbordamiento de búfer en Office Web Components ActiveX Control en Microsoft Office XP SP3, Office 2000 Web Components SP3, Office XP Web Components SP3, BizTalk Server ... • https://www.exploit-db.com/exploits/16542 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 65%CPEs: 11EXPL: 0CVE-2009-0562 – Microsoft Office OWC10 ActiveX Control Loading and Unloading Heap Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2009-0562
11 Aug 2009 — The Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 2004 SP3 and 2006 SP1, and Office Small Business Accounting 2006 does not properly allocate memory, which allows remote attackers to execute arbitrary code via unspecified vectors that trigger "system state" corruption, aka "Office Web Components... • http://www.securitytracker.com/id?1022708 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 16%CPEs: 1EXPL: 0CVE-2005-1215
https://notcve.org/view.php?id=CVE-2005-1215
14 Jun 2005 — Microsoft ISA Server 2000 allows remote attackers to poison the ISA cache or bypass content restriction policies via a malformed HTTP request packet containing multiple Content-Length headers. • http://secunia.com/advisories/15693 •
CVSS: 7.5EPSS: 43%CPEs: 1EXPL: 0CVE-2005-1216
https://notcve.org/view.php?id=CVE-2005-1216
14 Jun 2005 — Microsoft ISA Server 2000 allows remote attackers to connect to services utilizing the NetBIOS protocol via a NetBIOS connection with an ISA Server that uses the NetBIOS (all) predefined packet filter. • http://secunia.com/advisories/15693 •
CVSS: 7.5EPSS: 31%CPEs: 1EXPL: 0CVE-2005-1907
https://notcve.org/view.php?id=CVE-2005-1907
31 May 2005 — The ISA Firewall service in Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to cause a denial of service (Wspsrv.exe crash) via a large amount of SecureNAT network traffic. • http://securitytracker.com/id?1014113 •
CVSS: 7.5EPSS: 14%CPEs: 7EXPL: 0CVE-2004-0892
https://notcve.org/view.php?id=CVE-2004-0892
16 Nov 2004 — Microsoft Proxy Server 2.0 and Microsoft ISA Server 2000 (which is included in Small Business Server 2000 and Small Business Server 2003 Premium Edition) allows remote attackers to spoof trusted Internet content on a specially crafted webpage via spoofed reverse DNS lookup results. • http://www.securityfocus.com/bid/11605 •
CVSS: 6.8EPSS: 52%CPEs: 3EXPL: 1CVE-2003-0526 – Microsoft ISA Server 2000 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2003-0526
17 Jul 2003 — Cross-site scripting (XSS) vulnerability in Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to inject arbitrary web script via a URL containing the script in the domain name portion, which is not properly cleansed in the default error pages (1) 500.htm for "500 Internal Server error" or (2) 404.htm for "404 Not Found." Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Microsoft Internet Security and Acceleration (ISA) Server 2000 permite a atacantes ... • https://www.exploit-db.com/exploits/22919 •
CVSS: 7.5EPSS: 19%CPEs: 5EXPL: 0CVE-2003-0110
https://notcve.org/view.php?id=CVE-2003-0110
15 Apr 2003 — The Winsock Proxy service in Microsoft Proxy Server 2.0 and the Microsoft Firewall service in Internet Security and Acceleration (ISA) Server 2000 allow remote attackers to cause a denial of service (CPU consumption or packet storm) via a spoofed, malformed packet to UDP port 1745. El servicio Winsock Proxy en Microsoft Proxy Server 2.0 y el servicio Microsoft Firewall en Internet Security and Acceleration (ISA) Server 2000 permite a atacantes remotos causar una denegación de servicio (consumición de cpu o ... • http://marc.info/?l=bugtraq&m=104994487012027&w=2 •
CVSS: 7.5EPSS: 14%CPEs: 2EXPL: 0CVE-2003-0011
https://notcve.org/view.php?id=CVE-2003-0011
21 Mar 2003 — Unknown vulnerability in the DNS intrusion detection application filter for Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to cause a denial of service (blocked traffic to DNS servers) via a certain type of incoming DNS request that is not properly handled. Vulnerabilidad desconocida en el filtro de aplicación de detección de intrusos DNS de Microsoft Internet Security and Acceleration (ISA) Server 2000 permite a atacantes remotos causar una denegación de servicio (tr... • http://www.securityfocus.com/bid/7145 •
CVSS: 9.8EPSS: 65%CPEs: 12EXPL: 1CVE-2002-0371 – Microsoft Internet Explorer 5/6 / Microsoft ISA Server 2000 / Microsoft Proxy Server 2.0 Gopher Client - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-0371
15 Jun 2002 — Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response. Desbordamiento de búfer en el cliente gopher de Microsoft Internet Explorer 5.1 a la 6.0, Proxy Server 2.0, o ISA Server 2000 permite a atacantes remotos la ejecución de código arbitrario mediante una URL gopher:// que redirige al usu... • https://www.exploit-db.com/exploits/21510 •