Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.11889
Category:SMTP problems
Title:Exchange XEXCH50 Remote Buffer Overflow
Summary:This system appears to be running a version of the Microsoft Exchange; SMTP service that is vulnerable to a flaw in the XEXCH50 extended verb.
Description:Summary:
This system appears to be running a version of the Microsoft Exchange
SMTP service that is vulnerable to a flaw in the XEXCH50 extended verb.

Vulnerability Impact:
This flaw can be used to completely crash Exchange 5.5 as well as execute
arbitrary code on Exchange 2000.

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: BugTraq ID: 8838
Common Vulnerability Exposure (CVE) ID: CVE-2003-0714
http://www.securityfocus.com/bid/8838
Bugtraq: 20031022 MS03-046 Microsoft Exchange 2000 Heap Overflow (Google Search)
http://marc.info/?l=bugtraq&m=106682909006586&w=2
http://www.cert.org/advisories/CA-2003-27.html
CERT/CC vulnerability note: VU#422156
http://www.kb.cert.org/vuls/id/422156
Microsoft Security Bulletin: MS03-046
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-046
CopyrightThis script is Copyright (C) 2003 Digital Defense Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2022 E-Soft Inc. All rights reserved.