SMTP: Cross Site Script Attack URL in Email
This signature detects URLs within an e-mail that contains possible Cross-site scripting attacks. Many Web servers, including Microsoft Exchange OWA, are vulnerable to this attack. Successful attacks can allow the attacker to gain control over the user's system.
Extended Description
It has been reported that Microsoft Exchange Server Outlook Web Access is prone to a cross-site scripting vulnerability. The issue is reported to exist due insufficient sanitization of user-supplied data in HTML encoding performed by Compose New Message form. The problem may allow a remote attacker to execute HTML or script code in the browser of a user running the vulnerable software. Successful exploitation of this attack may allow an attacker to steal cookie-based authentication information that could be used to launch further attacks.
Affected Products
Microsoft exchange_server
Short Name
SMTP:MAL:XSS-URL-IN-EMAIL
Severity
Minor
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
Attack CVE-2004-0203 Cross Email Script Site URL bid:8832 in
Release Date
08/12/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
4.3