OWA是Exchange 5.5和2000服務器,允許用戶使用Web瀏覽器來訪問他們的Exchange郵箱的服務。然而,一個漏洞存在於對郵件附件OWA和IE瀏覽器之間的相互作用。如果附件包含HTML代碼包括腳本,當附件被打開,而不管附件類型的腳本將被執行。由於OWA要求腳本在區,在那裡OWA服務器位於啟用,該腳本可以採取對用戶的Exchange郵箱採取行動。攻擊者可以利用這個漏洞構建包含惡意腳本代碼的附件。該攻擊者然後可以發送附件在郵件中向用戶 要求: 在Windows NT /...
最近瀏覽的軟件
-
sp15060.exe 6 Dec 15
熱門軟件
-
Windows XP Security Patch (64 Bit): October IIS5.1 Cumulative Security Patch 21 Sep 15
-
ISA Server 2000 Security Update for Error Pages 21 Sep 15
-
Microsoft Exchange Server Information Store Viewer (MDBVU32) 21 Sep 15
-
ISA Server 2000 - Vulnerability in H.323 Filter Can Cause Remote Code Execution (816458) 21 Sep 15
-
IIS Security Planning Tool 21 Sep 15
-
Microsoft Exchange Server Management Pack Configuration Wizard 21 Sep 15
-
Microsoft Forefront Client Security Enterprise Manager 12 Jul 15
最好的 企業安全軟件 為 Microsoft
最近瀏覽的軟件
-
sp15060.exe 6 Dec 15
熱門軟件
-
Identity Lifecycle Manager 180-Day Evaluation 21 Sep 15
-
ISA Server 2000 Security Update for Error Pages 21 Sep 15
-
Microsoft Forefront Security for Exchange Server with Service Pack 2 10 Jul 15
-
Microsoft Malformed Web Form Submission Vulnerability Patch (IIS 4.0) 6 Dec 15
-
ISA Server 2000 - Vulnerability in H.323 Filter Can Cause Remote Code Execution (816458) 21 Sep 15
-
Microsoft Exchange 2000 Attachment Handling Patch 5 Dec 15
-
Web Services Enhancements 3.0 Hands On Lab - Exploring Security 21 Sep 15