The Active Network
ActiveMac Anonymous | Create a User | Reviews | News | Forums | Advertise  
 

User Controls

New User

Login

Edit/View My Profile

ActiveMac

Articles

Forums

Links

News

News Search

Reviews

News Centers

Windows/Microsoft

DVD

ActiveHardware

Xbox

MaINTosh

News Search

ANet Chats

The Lobby

Special Events Room

Developer's Lounge

XBox Chat

FAQ's

Windows 98/98 SE

Windows 2000

Windows Me

Windows "Whistler" XP

Windows CE

Internet Explorer 6

Internet Explorer 5

Xbox

DirectX

DVD's

TopTechTips

Registry Tips

Windows 95/98

Windows 2000

Internet Explorer 4

Internet Explorer 5

Windows NT Tips

Program Tips

Easter Eggs

Hardware

DVD

Latest Reviews

Applications

Microsoft Windows XP Professional

Norton SystemWorks 2002

Hardware

Intel Personal Audio Player 3000

Microsoft Wireless IntelliMouse Explorer

Site News/Info

About This Site

Affiliates

ANet Forums

Contact Us

Default Home Page

Link To Us

Links

Member Pages

Site Search

Awards

Credits
1997/2004, Active Network. All Rights Reserved.
Layout & Design by Designer Dream. Content written by the Active Network team. Please click here for full terms of use and restrictions or read our Privacy Statement.

  *  

  Microsoft Security Bulletin MS01-047: OWA Function Allows Unauthenticated User to Enumerate Global Address List
Time: 19:42 EST/00:42 GMT | News Source: ActiveWin.com | Posted By: Matthew Sabean

Among the functions Outlook Web Access (OWA) in Exchange 5.5 offers is the ability to search the global address list (GAL). By design, this is an authenticated function, implemented as a two-tier architecture - a front tier that provides a user interface and a back-end tier that actually performs the search. However, only the front tier actually checks authentication. An attacker who sent a properly formatted request to the back-end function that actually performs the search could enumerate the GAL without authenticating.

  • The vulnerability would only allow the attacker to learn users email aliases. It would not provide any other capabilities. Specifically, it would not give the attacker any way to create or send mail as a user; to read, change or delete mail; or to perform any other functions on the server.
  • The vulnerability is only exploitable via OWA. Exchange servers that are not configured to offer OWA are not affected by the vulnerability.
  • The vulnerability does not affect Exchange 2000, even when offering OWA.

Patch availability:
Microsoft Exchange 5.5: http://www.microsoft.com/Downloads/Release.asp?ReleaseID=32483

Write Comment
Return to News

  Displaying 726 through 730 of 730
Prev | First 		  The time now is 10:37:01 AM ET.
Any comment problems? E-mail us
#726 By 4240821 (208.123.185.42) at 11/27/2025 5:49:21 PM
https://telegra.ph/AI-News-Today-Ignites-Breakthroughs-in-Quantum-Coding-and-Ethical-AI-Governance-11-27-4
https://telegra.ph/Hofer-Öffnungszeiten-Discover-the-New-Extended-Hours-That-Make-Shopping-Easier-Than-Ever-11-27-2
https://telegra.ph/Shocking-champions-league-results-Rewrite-the-Knockout-Stage-as-Underdogs-Roar-11-27
https://telegra.ph/auchan-supermarché-sparks-shopping-frenzy-as-unbelievable-flash-deals-shake-up-the-weekend-11-27-2
https://telegra.ph/Xochitl-Gomez-Fires-Up-Hollywood-The-Rising-Star-Set-to-Redefine-Young-Talent-11-27
https://telegra.ph/Thanksgiving-Turmoil-Record-Shortages-Drive-Turkey-Prices-Skyward-as-Families-Scramble-for-the-Feast-11-27-3
https://telegra.ph/hong-kong-ignites-skyline-climbs-to-record-heights-as-a-tech-boom-erupts-11-27-2
https://telegra.ph/Vincent-Kompany-Sparks-Shock-Comeback-Unleashes-Bold-Tactics-to-Fuel-Title-Charge-11-27-5
https://telegra.ph/Thunder-Roars-as-Timberwolves-Triumph-Sparks-Wild-Playoff-Frenzy-11-27
https://telegra.ph/stranger-things-saison-5-Hawkins-teeters-on-the-brink-as-the-Upside-Down-answers-back-11-27-2

#727 By 4240821 (208.123.185.42) at 11/28/2025 4:30:46 AM
https://telegra.ph/Clash-of-legends-atlético-clube-de-portugal---benfica-set-to-explode-in-Lisbon-11-21
https://telegra.ph/Horten-Heist-Unravels-as-horten-Scandal-Sparks-Global-Frenzy-11-21-2
https://telegra.ph/Armenia-Unveils-Groundbreaking-AI-Chip-Ignites-Global-Tech-Rally-11-21
https://telegra.ph/Falkenbergs-Surprising-Comeback-How-One-Town-Turned-the-Tide-11-21
https://telegra.ph/bruce-parry-Unleashes-a-Wild-New-Adventure-Igniting-Global-Buzz-11-21
https://telegra.ph/Balenciagas-Shocking-New-Campaign-Ignites-Global-Firestorm-11-21
https://telegra.ph/Valencia-Clashes-with-Levante-in-Explosive-Derby-Showdown-11-21-2
https://telegra.ph/Davis-Cup-Unstoppable-Spain-Sweeps-into-Final-11-21
https://telegra.ph/Atlético-CP-vs-Benfica-Clash-of-Titans-Shocks-Football-World-11-21
https://telegra.ph/Susan-Calman-Stuns-Audience-with-Bold-New-Comedy-Show-Its-a-Heartwarming-Riot-11-21

#728 By 4240821 (208.123.185.42) at 11/28/2025 12:23:00 PM
https://telegra.ph/Meghan-Trainor-Set-to-Release-Chart-Topping-Album-This-Summer-11-15
https://telegra.ph/Clippers-Set-to-Clash-with-Mavericks-in-Thrilling-Showdown-for-NBA-Supremacy-11-15-2
https://telegra.ph/Keith-Richards-Shocking-Reveal-The-Truth-About-His-Iconic-Guitar-11-15
https://telegra.ph/solden-Sparks-Shopping-Frenzy-as-Limited-Edition-Drops-Vanish-in-Minutes-11-15
https://telegra.ph/bombenentschärfung-kiel-Tense-Hour-Ends-as-Authorities-Clear-Kiel-of-Threat-11-15
https://telegra.ph/Massive-Celebrations-Set-for-17-listopadu-Obchody-Spark-City-Wide-Festivities-11-15
https://telegra.ph/Strawberry-Festival-2026-Ignites-a-Berry-Burst-Weekend-of-Flavor-Fun-and-Fireworks-11-15
https://telegra.ph/Slovensko-vs-Severní-Irsko-Úžasné-přátelství-které-překračuje-hranice-11-15
https://telegra.ph/Guy-Rouxs-Culinary-Masterclass-A-Feast-for-the-Senses-11-15
https://telegra.ph/Nadia-Calviños-Shock-Plan-Rocks-EU-Financial-Markets-11-15

#729 By 4240821 (208.123.185.42) at 11/28/2025 1:44:22 PM
https://sexonly.top/activ23e3ce45cg
https://lustful.su/activ4d4bbf1bde
https://nsfw.su/activh4ade1feef
https://lustful.su/activh5h5b524hf
https://smutty.su/activ3afd2a5b3c
https://sexonly.su/activhc3b442afg
https://nsfw.su/activ4gh345155b
https://sluts.su/activ13g3hhf3ge
https://sexonly.top/activ1dgc4ebgad
https://smutty.su/activc1fahef1e3

#730 By 4240821 (208.123.185.42) at 11/29/2025 3:46:15 AM
https://lustful.su/activd3cedeh532
https://smutty.su/activhgchgcagc4
https://lustful.su/activeefgegdbh5
https://sluts.su/activdfacbbdg43
https://nsfw.su/activ33d312ccg1
https://nsfw.su/activbbca54e153
https://nsfw.su/activaff4fbfagf
https://smutty.su/activ5hheagbh41
https://sexonly.su/activdbh44cdadc
https://sluts.su/activ21gb3efefg

Write Comment
Return to News
  Displaying 726 through 730 of 730
Prev | First 		  The time now is 10:37:01 AM ET.
Any comment problems? E-mail us
User name and password:

 

   *  
  *   *