|
|
 |
| New User, Welcome! Login |
Re: Microsoft Outlook Web Access (OWA) v8.2.254.0 "id" parameter Information Disclosure Vulnerability
| From: |
=?iso-8859-2?Q?Jab=B3o=F1ski=2C_Pawe=B3?= <PJablonski ivmx pl> |
| To: |
"praveen_recker sify com" <praveen_recker sify com> |
| Cc: |
"bugtraq securityfocus com" <bugtraq securityfocus com> |
| Subject: |
Re: Microsoft Outlook Web Access (OWA) v8.2.254.0 "id" parameter Information Disclosure Vulnerability |
| Date: |
Fri - May 21, 2010 02:53 PM |
Not working at my environment: Tested on Firefox 3.6.3 (Linux).
OWA version: 8.2.254.0
Exception type: Microsoft.Exchange.Data.Storage.CorruptDataException. OWA uses
System.Convert.FromBase64String(String s) for parsing the address, so even when you
try to put the representation there, you should get the invalid format of serialized ID anyways.
Weird it goes through at yours.
Regards,
Pawel Jablonski
> $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
> "Microsoft Outlook Web Access (OWA) version 8.2.254.0"
> OS: Windows Server 2003
> Internet Explorer 7
> $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
> There is an information disclosure vulnerability in "Microsoft Outlook Web Access (OWA) version 8.2.254.0".
> The issue is with the id parameter.
> Following are different exploitation techniques:
> https://example.com/owa/?ae=Folder&t=IPF.Note&id=<script>alert("HHH")</script>
> https://example.com/owa/?ae=Folder&t=IPF.Note&id=
> https://example.com/owa/?ae=Folder&t=IPF.Note&id=A
> Whom to contact to get a CVE Identifier for this vulnerability.
> Best Regards,
> Praveen Darshanam,
> Security Researcher,
> INDIA
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
