Hot on the tails of the public release of Windows XP service pack 2, a security flaw has been found in an older but still very popular version of Exchange server, Microsoft's e-mail server product.

Described as being of "moderate" risk, the exploit has the potential for remote code execution on version 5.5 (SP4) of Exchange server. The exploit is made possible through Outlook Web Access.

See here for details and a patch.