owa hijacking through firepass

Question

Dear all,&nbsp;&nbsp;
My security team has decided to stop OWA publishing through our current Microsoft ISA Server because of the following security vulnerability : &nbsp;&nbsp;

http://cve.mitre.org/cgi-bin/cvenam...-2010-3213
&nbsp;

&nbsp;We use Exchange 2003 and Microsoft won't patch Exchange 2003 to correct this threat. Today, we have a firepass V6.03 we publish OWA for some peoples and for most people we use ISA 2006.&nbsp;&nbsp;
My question is does the vulnerability can be use with the firepass OWA publishing rule or not ?  because it can with ISA and microsoft want us to migrate to UAG Server that can block the threat.&nbsp;
&nbsp;So I have to choose between migrating to UAG server or all the people to firepass if it can block the threat.&nbsp;&nbsp;

&nbsp;
&nbsp;

&nbsp;please le me know your advices.&nbsp;&nbsp;
thanks&nbsp;&nbsp;&nbsp;&nbsp;

&nbsp;
&nbsp;
&nbsp;

&nbsp; &nbsp;

&nbsp;
&nbsp;
&nbsp;
&nbsp;

&nbsp; &nbsp;

&nbsp;
&nbsp;
&nbsp;
&nbsp;

&nbsp;http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3213http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3213&nbsp;

&nbsp; &nbsp;

mike_61719 · Answer

I would like to give an answer on this topic but due to the sensitive nature of the topic I will not. Can you create a ticket with F5 support? They would be better suited for this.

Forum Discussion

owa hijacking through firepass

Recent Discussions

VS FORWARDING & ROUTE

Diameter iRules attachment?

Source IP F5 DNS Zone Forwarder

F5 BIG-IP

BIG-IP Oauth Client and AS

Related Content

Patching Won't Prevent Compromise & Repos Hijacking June 18th – 24th This Week in Security

Oracle Identity Manager Remote Hijack Vulnerability (CVE-2017-10151)

About Session Hijacking

Ode to FirePass

Difference Between APM & Firepass

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS