CVE-2005-0563
Microsoft Outlook Web Access (OWA) for Exchange Server 5.5 contains a cross-site scripting (XSS) vulnerability in the HTML encoding used in Compose New Message, allowing an attacker to cause script execution in the user’s context via a specially crafted email (encoded javascript: URL in an IMG ta...