Back to search
CVE-2006-1193
Published: Jun 13, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in Microsoft Exchange Server 2000 SP1 through SP3, when running Outlook Web Access (OWA), allows user-assisted remote attackers to inject arbitrary HTML or web script via unknown vectors related to "HTML parsing."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1016280
vdb-entry
x_refsource_SECTRACK
20060614 SEC Consult SA-20060613-0 :: Outlook Web Access Cross Site Scripting Vulnerability
mailing-list
x_refsource_FULLDISC
26441
vdb-entry
x_refsource_OSVDB
exchange-owa-xss(25550)
vdb-entry
x_refsource_XF
TA06-164A
third-party-advisory
x_refsource_CERT
18381
vdb-entry
x_refsource_BID
ADV-2006-2326
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:1161
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:1070
vdb-entry
signature
x_refsource_OVAL
MS06-029
vendor-advisory
x_refsource_MS
oval:org.mitre.oval:def:1315
vdb-entry
signature
x_refsource_OVAL
VU#138188
third-party-advisory
x_refsource_CERT-VN
20634
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now