Spoofing attack in Microsoft Exchange Server - CVE-2017-11932
Published: December 12, 2017 / Updated: December 12, 2017
Vulnerability identifier: #VU9641
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2017-11932
CWE-ID: CWE-451
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Microsoft
Affected software:
Microsoft Exchange Server
Microsoft Exchange Server
Detailed vulnerability description
The vulnerability allows a remote attacker to perform spoofing attack.
The vulnerability exists due to error in Outlook Web Access (OWA) in Microsoft Exchange Server when parsing HTTP requests. A remote attacker can perform script or content injection attacks, and attempt to trick the user into disclosing sensitive information.
Additionally Microsoft has released an update for Microsoft Exchange that provides enhanced security as a defense-in-depth measure.
The vulnerability exists due to error in Outlook Web Access (OWA) in Microsoft Exchange Server when parsing HTTP requests. A remote attacker can perform script or content injection attacks, and attempt to trick the user into disclosing sensitive information.
Additionally Microsoft has released an update for Microsoft Exchange that provides enhanced security as a defense-in-depth measure.
How to mitigate CVE-2017-11932
Install updates from vendor's website.