Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2143

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2008-2143
Last Modified 05 Sep 2008 05:39:40
Published 12 May 2008 03:20:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2143

Summary

Unspecified versions of Microsoft Outlook Web Access (OWA) use the Cache-Control: no-cache HTTP directive instead of no-store, which might cause web browsers that follow RFC-2616 to cache sensitive information.

Vulnerable Systems

Application

  • Microsoft Outlook Web Access


References

CERT-VN - VU#829876

XF - microsoft-owa-nostore-info-disclosure(42301)

BID - 29121


Last Updated: 27 May 2016 10:47:46