Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually accepted by OWA.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Outlook 授权问题漏洞
Vulnerability Description
RSA SecurID是美国易安信(EMC)公司的一款在允许用户登陆到微软Windows环境之前就能证明其身份的认证解决方案。Microsoft Outlook的WEB访问OWA是Microsoft Exchange服务程序的组件,为EMAIL提供WEB接口。Microsoft Outlook的WEB访问组件结合RSA SecurID认证存在漏洞,可导致认证可绕过。一个能够访问OWA系统的用户在正确SecureID验证后,再以不同用户身份并不提供额外的SecurID进行认证也可访问OWA系统。攻击者需要有
CVSS Information
N/A
Vulnerability Type
N/A