Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:STC:VULN:OUTLOOK-XSRF

Severity

 Low

Recommended

 No

Category

 HTTP

Keywords

 Microsoft Outlook Web Access XSRF

Release Date

 2010/07/26

Update Number

 1740

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft Outlook Web Access Cross Site Request Forgery


This signature detects Web pages containing dangerous cross site requests. A malicious Web site can exploit a known vulnerability in Microsoft Exchange Web application and gain control of the client mail application.

Extended Description

Microsoft Outlook Web Access for Exchange Server 2003 is prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain actions in the context of an authorized user's session and gain unauthorized access to the affected application; other attacks are also possible.

Affected Products

  • Microsoft Outlook Web Access for Exchange Server 2003

References

  • BugTraq: 41843
  • URL: http://www.microsoft.com/exchange/default.mspx

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out