The Active Network
ActiveMac Anonymous | Create a User | Reviews | News | Forums | Advertise  
 

  *  

  Microsoft Security Bulletin MS03-047: Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting Attack (828489)
Time: 00:47 EST/05:47 GMT | News Source: ActiveWin.com | Posted By: Robert Stein

A cross-site scripting (XSS) vulnerability results due to the way that Outlook Web Access (OWA) performs HTML encoding in the Compose New Message form. An attacker could seek to exploit this vulnerability by having a user run script on the attacker's behalf. The script would execute in the security context of the user. If the script executes in the security context of the user, the attacker's code could then execute by using the security settings of the OWA Web site (or of a Web site that is hosted on the same server as the OWA Web site) and could enable the attacker to access any data belonging to the site where the user has access.

Write Comment
Return to News

  Displaying 526 through 526 of 526
Prev | First
  The time now is 2:06:35 PM ET.
Any comment problems? E-mail us
#526 By 4240821 (178.217.45.3) at 6/4/2025 10:44:32 PM
https://nsfw.su/v/tbxts5cvw9c1.php
https://nsfw.su/v/a28fyakmpj8g.php
https://nsfw.su/v/td1mj03odq0w.php
https://nsfw.su/v/27rb46vg40sk.php
https://nsfw.su/v/8syc3qgh44ev.php
https://nsfw.su/v/firnhddpwjqd.php
https://nsfw.su/v/zw7sy5ug5ob4.php
https://nsfw.su/v/fqlfx3d9i6bt.php
https://nsfw.su/v/a1krdrws07au.php
https://nsfw.su/v/esiwct126r0m.php

Write Comment
Return to News
  Displaying 526 through 526 of 526
Prev | First
  The time now is 2:06:35 PM ET.
Any comment problems? E-mail us
User name and password:

 

  *  
  *   *