07.197.2003 - MS03-028: Flaw in ISA Server Error Pages Could Allow Cross-Site Scripting Attack (816456)

ISA Server contains a number of HTML-based error pages that allow the server to respond to a client requesting a Web resource with a customized error. A cross-site scripting vulnerability exists in many of these error pages that are returned by ISA Server under specific error conditions. - Download English Patch (Direct Link) - Download German Patch (Direct Link) - Download French Patch (Direct Link) - Download Spanish Patch (Direct Link) - Download Japanese Patch (Direct Link) - View Additional Information - View Knowledge Base Article 816456 - View Microsoft Security Bulletin MS03-028 - View Microsoft End User Security Bulletin - Visit Microsoft Corporation