Network Computing is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

  1. Home
  2. Careers-and-certifications
  3. Microsoft Fixes Exchange Server Flaw
Careers and Certifications

Microsoft Fixes Exchange Server Flaw

Its regular monthly security update patches a "moderate" flaw in Outlook Web Access for Microsoft Exchange Server 5.5.
August 10, 2004

Microsoft released its security bulletin for August. The software maker Tuesday issued Microsoft Security Bulletin MS04-026, which addresses a "moderate" flaw in Outlook Web Access for Microsoft Exchange Server 5.5.

The flaw is what's known as a cross-site scripting and spoofing vulnerability, which makes it possible for an attacker to trick a user into running a malicious script on a victim's system. According to Microsoft's bulletin, if successful, an attacker could manipulate a Web browser and certain proxy server caches to place content of his or her choice within those Internet caches.

In its bulletin, Microsoft warns that users who created customized ASP pages should back up those pages before applying the update. Applying the update will overwrite the customized pages.

The Microsoft security bulletin is available here.

Tags:

News
Careers and Certifications
Networking