Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Windows : Microsoft Bulletins >> Vulnerability in Exchange Server 5.5 Outlook Web Access XSS (842436)

Vulnerability Assessment Details

Vulnerability in Exchange Server 5.5 Outlook Web Access XSS (842436)

Vulnerability Assessment Summary
Checks for ms04-026 via the registry

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote web server runs a script vulnerable to cross site scripting
attacks.

Description :

The remote host runs Outlook Web Access.

Outlook Web Access is a service for Microsoft Exchange, which provides
web-based email, calendaring and contact management to end users.

The remote version of Outlook Web Access is vulnerable to a cross-site
scripting vulnerability which may permit a possible hacker to execute arbitrary
java script in the security context of a victim using this service.

To exploit this flaw, a possible hacker would need to send a specially crafted
message to a victim using Outlook Web Access. When the victim reads the
message, the bug in Outlook Web Access triggers and cause the execution
of the script sent by the attacker.

Solution :

Microsoft has released a set of patches for OWA for Exchange 5.5 :

http://www.microsoft.com/technet/security/bulletin/ms04-026.mspx

Network Security Threat Level:

Low / CVSS Base Score : 3
(AV:R/AC:H/Au:NR/C:P/A:N/I:N/B:C)

Networks Security ID: 10902

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors