Tuesday, November 25, 2003 
Geek.com reports that <A HREF="http://www.geek.com/news/geeknews/2003Nov/gee20031125022814.htm">Microsoft is now investigating a new flaw in Exchange 2003</A>. The flaw pertains to the Outlook Web Access (OWA) component, which allows users to connect to their email without needing a locally installed email client. Matthew Johnson, a network administrator at a U.S. company based in Nashville, Tennessee, discovered the flaw, which at times allows a user to log into Outlook Web Access only to be connected to another user's mailbox with full access. Johnson first reported the issue to Microsoft two months ago, then later posted the issue to the NTBugtraq security mailing list.
Recent Articles
-
Why a server-based anti-spam solution might be a good idea
-
Hosted email security with GFI MailEssentials Complete Online
-
Send your holiday emails from Outlook while keeping that personal touch
-
Welcome to the ZATZ Studio
-
Video: SmartSchedules can overcome some of Outlook’s limitations
-
Open question: what would you like to see us cover?
-
How the Epsilon breach might cause real security problems
-
Status report: migrating ZENPRESS to a new platform
From Our Sponsor
