virus logo Intrusion Prevention

MS.OWA.Brute.Force

description-logoDescription

This indicates an attempt to perform a Brute Force attack against a Microsoft Outlook Web App server.
The attack consists of multiple requests intended to conduct a brute force login or to confirm the existence of usernames, launched at a rate of about 15 times in 1 seconds.

affected-products-logoAffected Products

Microsoft Outlook Web App 2003 server
Microsoft Outlook Web App 2007 server
Microsoft Outlook Web App 2010 server
Microsoft Outlook Web App 2013 server
Microsoft Outlook Web App 2016 server
Microsoft Outlook Web App 2019 server

Impact logoImpact

Impact of a successful attack could vary, with the worse case being a system compromise.

recomended-action-logoRecommended Actions

Adjust the threshold according to your network.
Monitor the traffic from that network for any suspicious activity.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 39292
Created Sep 25, 2014
Updated Jul 05, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action pass
Active
Affected OS Windows
Affected App Other