Microsoft Exchange Server Outlook Web Access Script Injection Vulnerability

Microsoft Exchange Server Outlook Web Access Script Injection Vulnerability

Solution:
Microsoft has released an advisory including fixes to address this issue.

Microsoft Exchange Server 2003 SP1

Microsoft Security Update for Exchange Server 2003 SP1 (KB912442)
http://www.microsoft.com/downloads/details.aspx?familyid=0E192781-847F -41C1-B32A-84218DB60942&displaylang=en

Microsoft Exchange Server 2000 SP3

Microsoft Security Update for Exchange 2000 Server (KB912442)
http://www.microsoft.com/downloads/details.aspx?familyid=746CE64E-3186 -422B-A13B-004E7942189B&displaylang=en

Microsoft Exchange Server 2003 SP2

Microsoft Security Update for Exchange Server 2003 SP2 (KB912442)
http://www.microsoft.com/downloads/details.aspx?familyid=C777BC9F-52B7 -4F17-96C7-DAF3B9987D70&displaylang=en