Intrusion Prevention

MS.Outlook.Web.Access.Remote.Script.Injection

Description

Microsoft Outlook Web Access has a script injection vulnerability, caused by the application's failure to properly handle specially crafted email attachments.
To exploit it, an attacker must send a specially crafted file by email to a user of the affected application. When the user opens the file, the attacker-supplied script code will be executed in the context of the affected system.
It allows attackers to execute arbitrary scripts, spoof content or obtain sensitive information via certain UTF-encoded, script-based e-mail attachments.

Affected Products

Microsoft Outlook Web Access for Exchange 2003 Server
Microsoft Outlook Web Access for Exchange 2000 Server
Microsoft Exchange Server 2003 SP2
Microsoft Exchange Server 2003 SP1
Microsoft Exchange Server 2003
Microsoft Exchange Server 2000 SP3
Microsoft Exchange Server 2000 SP2
Microsoft Exchange Server 2000 SP1
Microsoft Exchange Server 2000
Avaya Messaging Application Server MM 3.1
Avaya Messaging Application Server MM 3.0
Avaya Messaging Application Server MM 2.0
Avaya Messaging Application Server 0

Impact

Arbitrary scripts execution.

Recommended Actions

Microsoft has released an advisory along with updates to address this issue.
Microsoft Exchange Server 2000 SP3
Microsoft Security Update for Exchange 2000 Server (KB931832)
http://www.microsoft.com/downloads/details.aspx?familyid=21968843-4A81-4F1D-8207-5B0A710E3157
Microsoft Exchange Server 2000 SP2
Microsoft Security Update for Exchange 2000 Server (KB931832)
http://www.microsoft.com/downloads/details.aspx?familyid=21968843-4A81-4F1D-8207-5B0A710E3157
Microsoft Exchange Server 2003 SP1
Microsoft Security Update for Exchange Server 2003 SP1 (KB931832)
http://www.microsoft.com/downloads/details.aspx?familyid=5E7939BE-73D1-461C-8C79-EDDB0F1459FC
Microsoft Exchange Server 2000 SP1
Microsoft Security Update for Exchange 2000 Server (KB931832)
http://www.microsoft.com/downloads/details.aspx?familyid=21968843-4A81-4F1D-8207-5B0A710E3157
Microsoft Exchange Server 2003 SP2
Microsoft Security Update for Exchange Server 2003 SP2 (KB931832)
http://www.microsoft.com/downloads/details.aspx?familyid=1ABF93DA-D765-4876-96B5-ACB2D2A48F8F
Microsoft Exchange Server 2000
Microsoft Security Update for Exchange 2000 Server (KB931832)
http://www.microsoft.com/downloads/details.aspx?familyid=21968843-4A81-4F1D-8207-5B0A710E3157

CVE References

CVE-2007-0220