Microsoft Biztalk Server — known CVE vulnerabilities
Every CVE whose affected-product data names Microsoft Biztalk Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2007-1201 — CVSS 9.3 (critical): Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote attackers to execute…
CVE-2007-0940 — CVSS 9.3 (critical): Unspecified vulnerability in the Cryptographic API Component Object Model Certificates ActiveX control (CAPICOM.dll) in Microsoft CAPICOM…
CVE-2009-2496 — CVSS 9.3 (critical): Heap-based buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web…
CVE-2003-0117 — CVSS 7.5 (high): Buffer overflow in the HTTP receiver function (BizTalkHTTPReceive.dll ISAPI) of Microsoft BizTalk Server 2002 allows attackers to execute…
CVE-2003-0118 — CVSS 7.5 (high): SQL injection vulnerability in the Document Tracking and Administration (DTA) website of Microsoft BizTalk Server 2000 and 2002 allows…
CVE-2015-2475 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in uddi/search/frames.aspx in the UDDI Services component in Microsoft Windows Server 2008 SP2 and…