OWA 2003 vulnerabilities

If a user from home accesses their work email via OWA, can malware on their PC infect OWA and use their contact list to spoof accounts? Would they then be able to use those accounts to send spam and make it appear to come from the work email server?
PSD_AdminAsked:
Who is Participating?
 
sunnyc7Connect With a Mentor Commented:
0
 
Coast-ITCommented:
No, OWA is completely seperate to anything on the PC, it is a web based system.  Even with shared folders on it, it is read only.

Nothing to worry about.
0
 
sunnyc7Commented:
I have to research OWA security a bit more.
Usually SSL provides one line of safety.

However, you maybe susceptible to a different type of malaware/phishing attack, where users get an alert note to change their passwords in OWA, which takes them to a different site altogether.

Something like this advisory.
http://itservices.uchicago.edu/services/technicaltools/securitynews/2010/01/owamalware.shtml

will post back if I come up with something.
0
 
PSD_AdminAuthor Commented:
Thank you for your comments they were all very helpful.
0
 
sunnyc7Commented:
You are welcome :)
0
All Courses

From novice to tech pro — start learning today.