Microsoft Outlook Web Access for Exchange Server Email Field Cross-Site Scripting Vulnerability

Bugtraq ID: 30130
Class: Input Validation Error
CVE: CVE-2008-2247
Remote: Yes
Local: No
Published: Jul 08 2008 12:00AM
Updated: Jul 17 2008 06:49PM
Credit: Michael Jordan of Context Information Security
Vulnerable: Microsoft Exchange Server 2003 SP2
Avaya Messaging Application Server MM 3.1
Avaya Messaging Application Server MM 3.0
Avaya Messaging Application Server MM 2.0
Avaya Messaging Application Server MM 1.1
Avaya Messaging Application Server 0
Not Vulnerable: Microsoft Exchange Server 2000 SP3


 

Privacy Statement
Copyright 2010, SecurityFocus