Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execute commands on the user's Hotmail account.Referenceshttp://www.securityfocus.com/bid/630
