Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0726

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0726
Last Modified 05 Sep 2008 04:24:47
Published 06 Dec 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0726

Summary

Outlook Web Access (OWA) in Microsoft Exchange 5.5 Server, when used with Internet Explorer, does not properly detect certain inline script, which can allow remote attackers to perform arbitrary actions on a user's Exchange mailbox via an HTML e-mail message.

Vulnerable Systems

Application

  • Microsoft Exchange Server 5.5


References

MS - MS01-057

XF - exchange-owa-embedded-script-execution(7663)

BID - 3650

OSVDB - 5557


Last Updated: 27 May 2016 10:36:22