Vulnerability in Exchange Server 2003

A vulnerability exists in Exchange Server 2003 that can lead to "privilege escalation". The problem is due to a bug in the handling of NTLM authentication in Outlook Web Access. Using NTLM rather than Kerberos may lead to users gaining access to the wrong mailbox.

Affected Software:
Microsoft Exchange Server 2003

Read the bulletin at http://www.microsoft.com/technet/treeview/?url=/technet/security/bulletin/MS04-002.asp

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about Microsoft

Show Comments