The vulnerability of the Microsoft Exchange Server system’s automation mechanism allows a intruder to inject arbitrary web or HTML code.
The vulnerability of the Outlook Web Access component of the Microsoft Exchange Server automation system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code through a specially craft...