mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-08 22:35:37 +02:00
0xMarcio
805 B
805 B
CVE-2010-3213
Description
Cross-site request forgery (CSRF) vulnerability in Microsoft Outlook Web Access (owa/ev.owa) 2007 through SP2 allows remote attackers to hijack the authentication of e-mail users for requests that perform Outlook requests, as demonstrated by setting the auto-forward rule.
POC
Reference
- http://sites.google.com/site/tentacoloviola/pwning-corporate-webmails
- http://www.exploit-db.com/exploits/14285
Github
No PoCs found on GitHub currently.