Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0420


Vulnerability Score 7.5 7.5
CVE Id CVE-2005-0420
Last Modified 07 Mar 2011 09:19:58
Published 27 Apr 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Microsoft Outlook Web Access (OWA), when used with Exchange, allows remote attackers to redirect users to arbitrary URLs for login via a link to the owalogon.asp application.

Vulnerable Systems


  • Microsoft Exchange Server 2003


XF - owa-owalogonasp-url-redirect(19225)

VUPEN - ADV-2005-0105

BID - 12459

SECUNIA - 14144

FULLDISC - 20050206 Microsoft Outlook Web Access URL Injection Vulnerability

Last Updated: 27 May 2016 10:39:48