NVD

Id
16558  
Name
CVE-2016-0032  
Description
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 PS1, 2013 Cumulative Update 10, 2013 Cumulative Update 11, and 2016 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Exchange Spoofing Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2016-01-13  
Modified Date
2016-12-07  
Seq
2016-0032  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
92644 16558 CVE-2016-0032 MS16-010  View
92645 16558 CVE-2016-0032 1034647  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
244 JVNDB-2016-001017 Microsoft Exchange Server の Outlook Web Access におけるクロスサイトスクリプティングの脆弱性 Microsoft Exchange Server の Outlook Web Access (OWA) には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2016-0032 86236 CVE-2016-0032 16558 4.3 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-001017.html 2016-01-12 2016-01-15 View