iDEFENSE Security Advisory 12.20.02 – Microsoft”s Hotmail service contains cross site scripting vulnerabilities which allow session hijacking and arbitrary action execution.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/30632/12.20.02.txt
Source: https://packetstormsecurity.com/files/30632/iDEFENSE-Security-Advisory-2002-12-20.t.html