Microsoft Exchange Server Outlook Web Access Cross Site Request Forgery Vulnerability
Gravité: : Medium
Identifiant(s) CVE: : CVE-2010-3213
Date du conseil: 21 juillet 2015
Description
Microsoft Exchange Server Outlook Web Access is prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain actions in the context of an authorized user's session and gain unauthorized access to the affected application.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1004279
Trend Micro Deep Security DPI Rule Name: 1004279 - Microsoft Exchange Server Outlook Web Access Cross Site Request Forgery Vulnerability
Affected software and version:
- microsoft outlook_web_access 2007