Summary
Microsoft Exchange Public Folders can be set to allow anonymous connections (set by default). If this is not changed it is possible for
an attacker to gain critical information about the users (such as full email address, phone number, etc) that are present in the Exchange Server.
Additional information:
http://www.securiteam.com/windowsntfocus/5WP091P5FQ.html
Severity
Classification
-
CVE CVE-2001-0660 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Adobe Digital Edition Information Disclosure Vulnerability (Mac OS X)
- Adobe Reader Information Disclosure Vulnerability Jun05 (Windows)
- Brother HL-5370DW Printer 'post/panel.html' Security Bypass Vulnerability
- Adobe Reader Information Disclosure & Denial of Service Vulnerabilities (Windows)
- Apple Mac OS X Authentication Bypass Vulnerability