Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0099


Vulnerability Score 5.0 5.0
CVE Id CVE-2009-0099
Last Modified 04 Mar 2009 01:48:28
Published 10 Feb 2009 05:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



The Electronic Messaging System Microsoft Data Base (EMSMDB32) provider in Microsoft Exchange 2000 Server SP3 and Exchange Server 2003 SP2, as used in Exchange System Attendant, allows remote attackers to cause a denial of service (application outage) via a malformed MAPI command, aka "Literal Processing Vulnerability."

Vulnerable Systems


  • Microsoft Exchange Server 2000

  • Microsoft Exchange Server 2003

  • Microsoft Exchange Server 2007


CERT - TA09-041A

MS - MS09-003

SECUNIA - 33838

OSVDB - 51838

Last Updated: 27 May 2016 10:50:06