Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0660


Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0660
Last Modified 05 Sep 2008 04:24:37
Published 30 Oct 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and earlier, allows remote attackers to identify valid user email addresses by directly accessing a back-end function that processes the global address list (GAL).

Vulnerable Systems


  • Microsoft Exchange Server 5.5


MS - MS01-047

MSKB - Q307195

XF - exchange-owa-obtain-addresses(7089)

BID - 3301

Last Updated: 27 May 2016 10:36:20