First published: Mon Dec 13 1999(Updated: )
Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Exchange Server | =5.5 | |
Microsoft Exchange Server | =5.0 | |
=5.0 | ||
=5.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-1999-0993 is classified as a moderate severity vulnerability.
To fix CVE-1999-0993, ensure that the directory store cache is refreshed after modifying ACLs.
CVE-1999-0993 affects Microsoft Exchange Server versions 5.0 and 5.5.
The impact of CVE-1999-0993 is that changes to access control lists may not take effect immediately without a cache refresh.
CVE-1999-0993 does not involve a remote exploitation vector but rather an issue with local ACL modifications.