Vulnerability in N/a
CVE-2005-0420
Microsoft Outlook Web Access (OWA), when used with Exchange, allows remote attackers to redirect users to arbitrary URLs for login via a link to the owalogon.asp application.
EPSS: 0.747 (98.9th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 14144 (x_refsource_SECUNIA, third-party-advisory)
- 20050206 Microsoft Outlook Web Access URL Injection Vulnerability (mailing-list, x_refsource_FULLDISC)
- owa-owalogonasp-url-redirect(19225) (vdb-entry, x_refsource_XF)
- 12459 (vdb-entry, x_refsource_BID)
- ADV-2005-0105 (vdb-entry, x_refsource_VUPEN)