Microsoft Exchange SMTP Extended Request Buffer Overflow - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Microsoft Exchange SMTP Extended Request Buffer Overflow

Secunia Advisory:	SA10015
Release Date:	2003-10-15
Last Update:	2003-10-16

Critical:	Highly critical
Impact:	System access
Where:	From remote
Solution Status:	Vendor Patch

Software:	Microsoft Exchange 2000 Enterprise Server Microsoft Exchange 5.5 Microsoft Exchange Server 2000

CVE reference:	CVE-2003-0714 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: Microsoft has issued patches for Exchange to fix a buffer overflow vulnerability in the SMTP service. The vulnerability may be exploited by sending a maliciously crafted parameter to an extended verb request. Exchange 5.5 is only vulnerable to a Denial of Service. Exchange 2000 is also vulnerable to execution of arbitrary code. Exchange 2003 is not affected. Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector. Solution: A SMTP gateway or application level firewall may prevent exploitation of these vulnerabilities. Microsoft has issued patches: Microsoft Exchange Server 5.5, Service Pack 4 http://www.microsoft.com/downloads/de...-8AE9-5648BFB46459&displaylang=en Microsoft Exchange 2000 Server, Service Pack 3 http://www.microsoft.com/downloads/de...-A570-9F232AE49F01&displaylang=en Provided and/or discovered by: João Gouveia Changelog: 2003-10-16: Added link to CERT vulnerability note. Original Advisory: Vulnerability in Exchange Server Could Allow Arbitrary Code Execution: http://www.microsoft.com/technet/security/bulletin/MS03-046.asp Other References: http://support.microsoft.com/default.aspx?scid=kb;[LN];829436 CERT VU#422156: http://www.kb.cert.org/vuls/id/422156



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

12 Related Secunia Security Advisories, displaying 10

1. Microsoft Exchange Multiple Vulnerabilities

2. Microsoft Exchange Server Outlook Web Access Script Insertion

3. Microsoft Exchange Server Calendar Vulnerability

4. Microsoft Outlook / Exchange TNEF Decoding Arbitrary Code Execution

5. Microsoft Collaboration Data Objects Buffer Overflow Vulnerability

6. Microsoft Outlook Web Access Script Insertion Vulnerability

7. Microsoft Exchange SMTP Service Extended Verb Request Buffer Overflow

8. Microsoft Windows SMTP Component Buffer Overflow Vulnerability

9. Microsoft Exchange HTML Redirection Script Insertion Vulnerability

10. Microsoft Exchange Cross-Site Scripting Vulnerability in Outlook Web Access

Show all related advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Opera Multiple Vulnerabilities

2.	Sun Solaris NFSv4 Client Kernel Module Denial of Service

3.	Banner Management "id" SQL Injection Vulnerability

4.	Avaya CMS Solaris "picld" Denial of Service

5.	Active PHP Bookmarks "id" SQL Injection Vulnerability

6.	Avaya CMS Solaris "snoop" Multiple Vulnerabilities

7.	Subdreamer Light Global Variables SQL Injection Vulnerability

8.	Ubuntu update for postfix

9.	Avaya CMS Solaris namefs Kernel Module Privilege Escalation

10.	WS_FTP Home / Professional Format String Vulnerability