Microsoft Exchange 5.5 Vulnerable to Denial Of Service Attack


Reported October 31, 2000 by Microsoft

VERSIONS AFFECTED
  • Microsoft Exchange Server 5.5

DESCRIPTION

Microsoft has released a security bulletin and patch to address a security vulnerability that could allow a malicious user to cause a Microsoft Exchange Server to fail.

By sending a particular type of invalid values in certain fields of the MIME header a malicious user could cause Exchange 5.5 to fail causing a system reboot.

VENDOR RESPONSE

Microsoft has released a security bulletin, MS00-0082. A patch is also available at;

http://www.microsoft.com/Downloads/Release.asp?ReleaseID=25443

CREDIT
Discovered by Art Savelev

TAGS: Security
Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish