At a glance:
| ID | 39292 |
| Created | Sep 25, 2014 |
| Description Updated | Dec 05, 2017 |
| Severity |
|
| Coverage |
IPS (Regular DB)
IPS (Extended DB)
|
| Default Action | pass |
| Active |
|
| Affected OS | Windows |
| Affected App | Other |
Legend
| Enabled/Available |
|
| Disabled/Not Avaliable | 
|
Update History
| Date | Version | Detail |
|---|---|---|
| 2017-12-06 | 12.278 | *Sig Added |
Refine Search
Intrusion Prevention
MS.OWA.Brute.Force
Description
This indicates an attempt to perform a Brute Force attack against a Microsoft Outlook Web App server.
The attack consists of multiple requests intended to conduct a brute force login or to confirm the existence of usernames, launched at a rate of about 15 times in 1 seconds.
Affected Products
Microsoft Outlook Web App 2003 server
Microsoft Outlook Web App 2007 server
Microsoft Outlook Web App 2010 server
Microsoft Outlook Web App 2013 server
Impact
Impact of a successful attack could vary, with the worse case being a system compromise.
Recommended Actions
Adjust the threshold according to your network.
Monitor the traffic from that network for any suspicious activity.