Microsoft Information for VU#149424
Outlook Web Access (OWA) executes scripts contained in email attachment opened via Microsoft Internet Explorer (IE)
- Vendor Information Help Date Notified:
- Statement Date:
- Date Updated: 05 Jul 2001
"If an attachment contains HTML code including script, the script will be executed when the attachment is opened, regardless of the attachment type."
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.