Microsoft Outlook Web Access for Exchange Server 'redir.asp' URI Redirection Vulnerability

Microsoft Outlook Web Access for Exchange Server 'redir.asp' URI Redirection Vulnerability

Outlook Web Access is prone to a remote URI-redirection vulnerability because the application fails to properly sanitize user-supplied input.

A successful exploit may aid in phishing attacks.

OWA 6.5 SP 2 is vulnerable; other versions may also be affected.