spiderwebwoman …

… step into my parlor

Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting and Spoofing Attacks (842436)

Filed under: Microsoft,Security — spiderwebwoman at 7:39 pm on Tuesday, August 10, 2004

Microsoft Security Bulletin MS04-026
Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting and Spoofing Attacks (842436)


Issued: August 10, 2004
Version: 1.0


Summary
Who should read this document: System administrators who have servers running Microsoft® Exchange Server 5.5 Outlook® Web Access


Impact of Vulnerability:  Remote Code Execution


Maximum Severity Rating: Moderate


Recommendation: Customers should consider applying the security update.


Security Update Replacement: This update replaces the security update that is provided in Microsoft Security Bulletin MS03-047.


Caveats: Customers who have customized any of the Active Server Pages (ASP) pages that are listed in the File Information section in this document should back up those files before they apply this update because those ASPs will be overwritten when the update is applied. Any customizations would then have to be reapplied to the new ASP pages.



No Comments

No comments yet.

RSS feed for comments on this post.

Sorry, the comment form is closed at this time.