CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
99.8%
Microsoft Outlook Web Access (OWA), when used with Exchange, allows remote attackers to redirect users to arbitrary URLs for login via a link to the owalogon.asp application.
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | exchange_server | 2003 | cpe:2.3:a:microsoft:exchange_server:2003:-:*:*:*:*:*:* |
microsoft | exchange_server | 2003 | cpe:2.3:a:microsoft:exchange_server:2003:sp1:*:*:*:*:*:* |