CVE-2008-2248

Currently unrated

Key Information:

Vendor
Microsoft
Status
Outlook Web Access
Exchange Server
Vendor
CVE Published:
8 July 2008

Summary

Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247.

References

https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
http://www.vupen.com/english/advisories/2008/2021/references
vdb-entryx_refsource_VUPEN
http://www.securitytracker.com/id?1020439
vdb-entryx_refsource_SECTRACK

EPSS Score

92% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.