CVE-2003-0714

The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote attackers to cause a denial of service (memory exhaustion) by directly connecting to the SMTP service and sending a certain extended verb request, possibly triggering a buffer overflow in Exchange 2000.
References
Link Resource
http://marc.info/?l=bugtraq&m=106682909006586&w=2 Mailing List Third Party Advisory
http://www.cert.org/advisories/CA-2003-27.html Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/422156 Patch Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/8838 Exploit Patch Third Party Advisory VDB Entry
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-046 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:exchange_server:5.5:-:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:5.5:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:5.5:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:5.5:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:5.5:sp4:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2000:-:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2000:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2000:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2000:sp3:*:*:*:*:*:*

History

No history.

Information

Published : 2003-11-17 05:00

Updated : 2024-02-04 16:31


NVD link : CVE-2003-0714

Mitre link : CVE-2003-0714

CVE.ORG link : CVE-2003-0714


JSON object : View

Products Affected

microsoft

  • exchange_server
CWE
CWE-400

Uncontrolled Resource Consumption