Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2003-0712

Cross-site scripting (XSS) vulnerability in the HTML encoding for the Compose New Message form in Microsoft Exchange Server 5.5 Outlook Web Access (OWA) allows remote attackers to execute arbitrary web script.

  • Published: Nov 17, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2003-0712
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
microsoft / exchange_server 5.5-sp1 5.5-sp1.x
microsoft / exchange_server 5.5-sp4 5.5-sp4.x
microsoft / exchange_server 5.5-sp2 5.5-sp2.x
microsoft / exchange_server 5.5-sp3 5.5-sp3.x
microsoft / exchange_server 5.5 5.5.x