- Quick specs
- Price: Free
- Operating system: Windows NT, Windows 2000
- Date added: December 12, 2001
- Total Downloads: 7,649
- Downloads last week: 18
- See full specifications
- Average user rating: stars out of 1 votes
See all user reviews
Publisher's description
From Microsoft :OWA is a service of Exchange 5.5 and 2000 Server that allows users to use a Web browser to access their Exchange mailbox. However, a flaw exists in the interaction between OWA and IE for message attachments. If an attachment contains HTML code including script, the script will be executed when the attachment is opened, regardless of the attachment type. Because OWA requires that scripting be enabled in the zone where the OWA server is located, this script could take action against the user's Exchange mailbox. An attacker could use this flaw to construct an attachment containing malicious script code. The attacker could then send the attachment in a message to the user.
More popular Corporate Security Software downloads
- 2,278 downloads 1. Folder Guard
- 1,060 downloads 2. L0phtCrack
- 735 downloads 3. McAfee Total Protection for Small Business
- 661 downloads 4. Spyware Doctor Enterprise Free Edition
- 447 downloads 5. Wireshark
- See all Corporate Security Software downloads
User reviews
- Average user rating: 0 stars Not yet available
- My rating: 0 stars Write review
-
Showing 1 of 1 user reviewSee 1 user review
This software version | All versions -
Version: Microsoft Exchange 5.5 Outlook Web Access Patch 2655.77
- See 1 user review Write review
Submit your review
- See more CNET content tagged:
- Microsoft Corp.,
- Microsoft Exchange 5.5 Server,
- Microsoft Outlook Web Access,
- attachment,
- server
Previous Versions:
