CVE-2001-0666
Microsoft Exchange Server 2000 - Authenticated Denial of Service via Malformed OWA Request
Title source: llmDescription
Outlook Web Access (OWA) in Microsoft Exchange 2000 allows an authenticated user to cause a denial of service (CPU consumption) via a malformed OWA request for a deeply nested folder within the user's mailbox.
References (3)
Core 3
Core References
VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/7168
Patch, Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-049
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3368
Scores
EPSS
0.0205
EPSS Percentile
78.8%
Details
CWE
CWE-400
Status
published
Products (1)
microsoft/exchange_server
2000
Published
Oct 30, 2001
Tracked Since
Feb 18, 2026