Unrated severityNVD Advisory· Published Oct 30, 2001· Updated Apr 16, 2026

CVE-2001-0666

Description

Outlook Web Access (OWA) in Microsoft Exchange 2000 allows an authenticated user to cause a denial of service (CPU consumption) via a malformed OWA request for a deeply nested folder within the user's mailbox.

Affected products

Microsoft/Exchange Server
cpe:2.3:a:microsoft:exchange_server:2000:-:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-049nvdPatchVendor Advisory
www.securityfocus.com/bid/3368nvdThird Party AdvisoryVDB Entry
exchange.xforce.ibmcloud.com/vulnerabilities/7168nvdVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000