CVE-2001-0726 Information

Description

Outlook Web Access (OWA) in Microsoft Exchange 5.5 Server when used with Internet Explorer does not properly detect certain inline script which can allow remote attackers to perform arbitrary actions on a user’s Exchange mailbox via an HTML e-mail message.

Reference

http://www.osvdb.org/5557 http://www.securityfocus.com/bid/3650 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-057 https://exchange.xforce.ibmcloud.com/vulnerabilities/7663