owa

About this tag
OWA, or Outlook Web Access, is the web-based email client for Microsoft Exchange Server. Discussions on WindowsForum.com cover security vulnerabilities in OWA, including information disclosure risks from specially crafted image URLs and improper handling of web requests. Older advisories highlight session hijacking threats where an attacker could take over an authenticated OWA session. These threads focus on security updates and patches released by Microsoft to address such vulnerabilities, emphasizing the importance of keeping Exchange Server and OWA up to date to protect against potential exploits.
  1. News

    MS16-079 - Important: Security Update for Microsoft Exchange Server (3160339) - Version: 1.0

    Severity Rating: Important Revision Note: V1.0 (June 14, 2016): Bulletin published. Summary: This security update resolves vulnerabilites in Microsoft Exchange Server. The most severe of the vulnerabilities could allow information disclosure if an attacker sends a specially crafted image URL in...
  2. News

    MS15-103 - Important: Vulnerabilities in Microsoft Exchange Server Could Allow Information...

    Severity Rating: Important Revision Note: V1.0 (September 8, 2015): Bulletin published. Summary: This security update resolves vulnerabilities in Microsoft Exchange Server. The most severe of the vulnerabilities could allow information disclosure if Outlook Web Access (OWA) fails to properly...
  3. News

    Microsoft Security Advisory (2401593): Vulnerability in Outlook Web Access Could Allow Elevation of

    Revision Note: V1.0 (September 14, 2010): Advisory published.Summary: Microsoft has completed the investigation of a publicly disclosed vulnerability in Outlook Web Access (OWA) that may affect Microsoft Exchange customers. An attacker who successfully exploited this vulnerability could hijack...
Back
Top