← CVECheck
HomeVulnerabilities

CVE-2001-0660 — MEDIUM severity vulnerability (Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and)

Outlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and earlier, allows remote attackers to identify valid user email addresses by directly accessing a back-end function that processes the global address list (GAL).

CVE IDCVE-2001-0660
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2001-10-30
Last modified2026-04-16
DescriptionOutlook Web Access (OWA) in Microsoft Exchange 5.5, SP4 and earlier, allows remote attackers to identify valid user email addresses by directly accessing a back-end function that processes the global address list (GAL).
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →