Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Microsoft Exchange Multiple Vulnerabilities

From: Nathan Power <np () securitypentest com>
Date: Mon, 4 Aug 2014 13:26:03 -0400
Exchange Multiple Internal IP Disclosures
------------------------------------------
Advisory:
http://foofus.net/?p=758
http://www.securitypentest.com/2014/08/exchange-multiple-internal-ip.html


Autodiscover Enumeration Vulnerability
------------------------------------------
Advisory:
http://foofus.net/?p=793
http://www.securitypentest.com/2014/08/autodiscover-enumeration-vulnerab
ility.html


CAS Authentication Timing Attack
------------------------------------------
Advisory:
http://foofus.net/?p=784
http://www.securitypentest.com/2014/08/cas-authentication-timing-attack.
html


POC video:
http://www.securitypentest.com/2014/08/owa-timing-attack-poc.html


Tools
------------------------------------------
http://foofus.net/?p=804

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/
Previous By Date Next
Previous By Thread Next

Current thread: