Outlook Web Access Elevation Of Privilege Vulnerability

2015年7月21日

Email
Facebook
Twitter
Google+
Linkedin

危険度: : 中

CVE識別番号: CVE-2010-3213

概要

Cross-site request forgery (CSRF) vulnerability in Microsoft Outlook Web Access (owa/ev.owa) 2007 through SP2 allows remote attackers to hijack the authentication of e-mail users for requests that perform Outlook requests, as demonstrated by setting the auto-forward rule.

トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

対応方法

Trend Micro Deep Security DPI Rule Number: 1004404

Trend Micro Deep Security DPI Rule Name: 1004404 - Outlook Web Access Elevation Of Privilege Vulnerability

影響を受けるソフトウェア

microsoft outlook_web_access 2007