x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

MS06-029

Threat LevelHigh threatDamageSevereDistributionNot widespread
Common name:MS06-029
Technical name:MS06-029
Threat level:Medium
Alias:Vulnerability in Microsoft Exchange Server Running Outlook Web Access
Type:Vulnerability
Effects:  

It is an important vulnerability in Outlook Web Access, which is a service of Exchange Server. It allows hackers to access to any data on the Outlook Web Access server that was accessible to the user under attack.

Affected platforms:

Windows 2003/XP/2000

First detected on:June 14, 2006
Detection updated on:June 14, 2006
StatisticsNo

Brief Description 

    

MS06-029 is not categorized as virus, worm, Trojan or backdoor. It is an important vulnerability in Outlook Web Access, which is a service of Exchange Server. Affected versions are Exchange Server 2000/2003. This vulnerability allows hackers to access to any data on the Outlook Web Access server that was accessible to the user under attack.

If exploited successfully, MS06-029 allows a script to take the following actions on the user's computer, among others: monitor the web session, forward information to a third party, run other code and read or write cookies.

In order to exploit this vulnerability, the attacking user must send a specially crafted email message, and then entice users into opening it by using Outlook Web Access.

 

If you have a server with Exchange Server 2000/2003 installed, it is recommended to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.