Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!

TUCoPS :: Web :: Servers :: bt571.txt

OWA - Domain User Credentials access via XSS

On my previous post about OWA XSS I talked about Cross

Site Scripting in the attachment field of a mail. The

XSS is not in the attachment, is in the body of the


Sorry, I need to sleep... 

Please notice: not in the attachment, in the BODY.

To make it clear to understand I have just published on

my site ( a report explaining how

to reproduce this bug on a real environment with a

proof of concept exploit.

Our code is able to exploit the XSS on the Outlook Web

Access to show the user cookie and the Windows domain,

username and password in cleartext.

Have fun!

Hugo Vázquez Caramés & Toni Cortés Martínez

Infohacking Research 2003




TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2015 AOH