Reported May 29, 2002, by Microsoft.
VERSION AFFECTED
· Microsoft Exchange 2000 Server
DESCRIPTION
A Denial of Service (DoS) condition
exists in Exchange 2000. This vulnerability stems from a problem in the way
Exchange 2000 handles certain malformed Request for Comments (RFC) message
attributes on received mail. An attacker can use these malformed messages to
cause the Store service to consume 100 percent of CPU resources until the mail
message is processed. Because the Exchange server still would have to process
the malformed message, rebooting the server or restarting the service would
have no effect on reducing the amount of consumed CPU resources.
VENDOR RESPONSE
The vendor, Microsoft, has released Security Bulletin MS02-025 to address this vulnerability and recommends that affected users apply the appropriate patch listed in the bulletin.
CREDIT
Discovered by Mr. Allendoerfer, Mr. Koenig, Mr. Kraemer, Mr. Schaal and Mr. Tacke of the Computing Center,
Johannes Gutenberg University, Mainz, Germany.
