- 1 Hyper-V 2012 R2: Pros and Cons of Generation 1 vs. Generation 2 VMs
- 2 Harnessing the Power of Hyper-V Network Virtual Switches
- 3 Working with SSH and Secure FTP Servers in Windows
- 4 Discover Windows 8's Hidden Server Features
- 5 Server Virtualization Customer Reviews: VMware, Hyper-V, XenServer and More
MS Exchange 5.5 Spoofing Flaw Fixed
A security vulnerability in Microsoft's Exchange Server 5.5 Outlook Web Access could put users at risk of cross-site scripting and spoofing attacks, the software giant warned on Tuesday.Microsoft Tuesday warned of a moderately critical vulnerability that puts users at risk for cross-site scripting and spoofing attacks.
As part of its August cycle of software updates, Microsoft released the moderately critical MS04-026 patch and re-released the MS04-020 bulletin to address a new issue in Microsoft Interix, a component of Services for Unix.
The Exchange Server 5.5 flaw, which was reported by research firm Sanctum, resolves a software flaw that could allow an attacker to convince a user to run a malicious script.
"An attacker who successfully exploited the vulnerability could manipulate Web browser caches and intermediate proxy server caches, and put spoofed content in those caches," Microsoft said. They may also be able to exploit the vulnerability to perform cross-site scripting attacks."
The bug affects only Microsoft Exchange Server 5.5 SP4 and the Outlook Web Access component.
This article was originally published on internetnews.com.