The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote attackers to cause a denial of service (memory exhaustion) by directly connecting to the SMTP service and sending a certain extended verb request, possibly triggering a buffer overflow in Exchange 2000.
References
Link | Resource |
---|---|
http://www.kb.cert.org/vuls/id/422156 | Patch Third Party Advisory US Government Resource |
http://www.securityfocus.com/bid/8838 | Exploit Patch Third Party Advisory VDB Entry |
http://www.cert.org/advisories/CA-2003-27.html | Third Party Advisory US Government Resource |
http://marc.info/?l=bugtraq&m=106682909006586&w=2 | Mailing List Third Party Advisory |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-046 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2003-11-16 21:00
Updated : 2020-04-09 06:49
NVD link : CVE-2003-0714
Mitre link : CVE-2003-0714
JSON object : View
CWE
CWE-400
Uncontrolled Resource Consumption
Products Affected
microsoft
- exchange_server