PT-2005-1482 · Microsoft · Outlook Web Access

Published

2005-02-15

Updated

2020-04-09

CVE-2005-0420

CVSS v2.0

5.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions Microsoft Outlook Web Access (OWA) (affected versions not specified)

Description The issue allows remote attackers to redirect users to arbitrary URLs for login via a link to the "owalogon.asp" application. This could potentially lead to phishing attacks or other malicious activities.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2005-0420

Affected Products

Outlook Web Access

PT-2005-1482 · Microsoft · Outlook Web Access

CVE-2005-0420

Weakness Enumeration

Related Identifiers

Affected Products

References · 8