NVD

Id
70656  
Name
CVE-2004-0203  
Description
Cross-site scripting (XSS) vulnerability in Outlook Web Access for Exchange Server 5.5 Service Pack 4 allows remote attackers to insert arbitrary script and spoof content in HTML email or web caches via an HTML redirect query.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-07-18  
Published
2004-11-23  
Modified Date
2017-07-10  
Seq
2004-0203  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
364473 70656 CVE-2004-0203 oval:org.mitre.oval:def:2016  View
364474 70656 CVE-2004-0203 VU#948750  View
364475 70656 CVE-2004-0203 MS04-026  View
364476 70656 CVE-2004-0203 exchange-owa-execute-code(16583)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
62975 JVNDB-2004-000317 Microsoft Exchange Server の OWA におけるクロスサイトスクリプティングの脆弱性 Microsoft Exchange Server に実装されている OWA には、HTML リダイレクトクエリへの入力をブラウザに表示する際に、サニタイジングが適切に行われない脆弱性が存在します。 CVE-2004-0203 8630 CVE-2004-0203 70656 6.8 http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000317.html 2004-08-10 2007-04-01 View