Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0563

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-0563
Last Modified 05 Sep 2008 04:46:39
Published 14 Jun 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-0563

Summary

Cross-site scripting (XSS) vulnerability in Microsoft Outlook Web Access (OWA) component in Exchange Server 5.5 allows remote attackers to inject arbitrary web script or HTML via an email message with an encoded javascript: URL ("javAsc ript:") in an IMG tag.

Vulnerable Systems

Application

  • Microsoft Exchange Server 5.5


References

MS - MS05-029

IDEFENSE - 20050614 Microsoft Outlook Web Access Cross-Site Scripting Vulnerability

SECUNIA - 15697


Last Updated: 27 May 2016 10:39:50