Home / bulletins MS08-039 â Important: Vulnerabilities in Outlook Web Access for Exchange Server Could Allow Elevation of Privilege (953747) - Version:1.1
Posted on 10 July 2008
There is an newer version: MS08-039 - Version: 1.2
Severity Rating: Important - Revision Note: V1.1 (July 9, 2008): Changed the information reference link for OWA Premium in the Mitigating Factors sections for both vulnerabilities.Summary: This security update resolves two privately reported vulnerabilities in Outlook Web Access (OWA) for Microsoft Exchange Server. An attacker who successfully exploited these vulnerabilities could gain access to an individual OWA client’s session data, allowing elevation of privilege. The attacker could then perform any action the user could perform from within the individual client’s OWA session.
Other versions
- MS08-039 - Version: 1.0
- MS08-039 - Version: 1.1
- MS08-039 - Version: 1.2
- MS08-039 - Version: 1.2
