BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: Microsoft Outlook Web Access (OWA) v8.2.254.0 "id" parameter Information Disclosure Vulnerability May 21 2010 09:56PM
Jab³oñski, Pawe³ (PJablonski ivmx pl)
Not working at my environment: Tested on Firefox 3.6.3 (Linux).

OWA version: 8.2.254.0

Exception type: Microsoft.Exchange.Data.Storage.CorruptDataException. OWA uses
System.Convert.FromBase64String(String s) for parsing the address, so even when you
try to put the representation there, you shoul...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus