|
|
|
google unix.com
|
|||||||
| Forums | Register | Forum Rules | Links | Albums | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
| Security Advisories (RSS) UNIX and Linux Security Advisories Via RSS News |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Telneting from HP-UX to MS Exchange Server | paye | HP-UX | 2 | 08-24-2007 09:37 AM |
| Exchange and mail server - Hindu Business Line | iBot | UNIX and Linux RSS News | 0 | 07-01-2007 09:41 PM |
| newbie question on server spamming exchange group list. | pmoores | SUN Solaris | 1 | 05-10-2007 12:02 PM |
| Mail Exchange Server | GlockCW | UNIX for Dummies Questions & Answers | 0 | 09-20-2004 05:55 PM |
| Connecting to an Exchange Server | camerja1 | Windows & DOS: Issues & Discussions | 2 | 08-05-2002 12:31 PM |
 |
Powered by 
|
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
|
|
07-17-2008
|
|||||
|
|||||
|
S-339: Vulnerabilities in Outlook Web Access for Exchange Server
There is a cross-site scripting vulnerability in the affected versions of Outlook Web Access (OWA) for Exchange Server. Exploitation of the vulnerability could lead to elevation of privilege on individual OWA clients connecting to Outlook Web Access for Exchange Server. The risk is LOW. To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted e-mail that would run malicious script from within an individual OWA client. If the malicious script is executed, the script would run inthe security context of the user's OWA session and could perform any action that user could perform such as reading, sending, and deleting e-mail as the logged-on user.
More... |
|
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Hybrid Mode
