Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified e-mail fields, a different vulnerability than CVE-2008-2248.
Software | From | Fixed in |
---|---|---|
microsoft / exchange_server | 2003-sp2 | 2003-sp2.x |
microsoft / exchange_server | 2007 | 2007.x |
microsoft / exchange_server | 2007-sp1 | 2007-sp1.x |