2 Microsoft Exchange Server Bulletins (1 critical, 1 moderate)

[Chris Wysopal <weld () vulnwatch org>]

*Critical*

Vulnerability in Exchange Server Could Allow Arbitrary Code Execution
(829436)
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms03-046.asp


*Moderate*

Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow
Cross-Site Scripting Attack (828489)
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms03-047.asp