Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0714

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0714
Last Modified 05 Sep 2008 04:35:03
Published 17 Nov 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0714

Summary

The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote attackers to cause a denial of service (memory exhaustion) by directly connecting to the SMTP service and sending a certain extended verb request, possibly triggering a buffer overflow in Exchange 2000.

Vulnerable Systems

Application

  • Microsoft Exchange Server 2000

  • Microsoft Exchange Server 5.5


References

CERT-VN - VU#422156

CERT - CA-2003-27

BID - 8838

MS - MS03-046

BUGTRAQ - 20031022 MS03-046 Microsoft Exchange 2000 Heap Overflow


Last Updated: 27 May 2016 10:38:01