CVE-2003-0712 — MEDIUM severity vulnerability (Cross-site scripting (XSS) vulnerability in the HTML encodin)
Cross-site scripting (XSS) vulnerability in the HTML encoding for the Compose New Message form in Microsoft Exchange Server 5.5 Outlook Web Access (OWA) allows remote attackers to execute arbitrary web script.
| CVE ID | CVE-2003-0712 |
|---|---|
| Severity | MEDIUM |
| CVSS score | 4.3 |
| CVSS vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
| CWE | CWE-79 |
| Status | Modified |
| Published | 2003-11-17 |
| Last modified | 2026-04-16 |
| Description | Cross-site scripting (XSS) vulnerability in the HTML encoding for the Compose New Message form in Microsoft Exchange Server 5.5 Outlook Web Access (OWA) allows remote attackers to execute arbitrary web script. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →