CVE-2003-0712 Information

Description

Cross-site scripting (XSS) vulnerability in the HTML encoding for the Compose New Message form in Microsoft Exchange Server 5.5 Outlook Web Access (OWA) allows remote attackers to execute arbitrary web script.

Reference

http://marc.info/?l=bugtraq&m=106631918405915&w=2 http://www.cert.org/advisories/CA-2003-27.html http://www.kb.cert.org/vuls/id/435444 http://www.securityfocus.com/bid/8832 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-047