6.9 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.033 Low
EPSS
Percentile
91.3%
Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlook Web Access (OWA) for Exchange Server 2003 SP2 (aka build 6.5.7638) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the URL parameter.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft:exchange_server | microsoft exchange server | eq | 2003 |
securityreason.com/securityalert/4441
www.securityfocus.com/archive/1/497374/100/0/threaded
www.securityfocus.com/archive/1/497390/100/0/threaded
www.securityfocus.com/archive/1/497433/100/0/threaded
www.securityfocus.com/archive/1/497500/100/0/threaded
www.securityfocus.com/archive/1/497534/100/0/threaded
www.securityfocus.com/bid/31765
exchange.xforce.ibmcloud.com/vulnerabilities/46061