Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and previous versions, allows remote malicious users to identify valid user email addresses by directly accessing a back-end function that processes the global address list (GAL).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft exchange server |