Lucene search

[email protected]CVE-2007-0221

HistoryMay 08, 2007 - 11:19 p.m.

CVE-2007-0221

2007-05-0823:19:00

CWE-190

[email protected]

web.nvd.nist.gov

107

cve-2007-0221

microsoft exchange server

imap

integer overflow

denial of service

vulnerability

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.158 Low

EPSS

Percentile

95.9%

JSON

Integer overflow in the IMAP (IMAP4) support in Microsoft Exchange Server 2000 SP3 allows remote attackers to cause a denial of service (service hang) via crafted literals in an IMAP command, aka the “IMAP Literal Processing Vulnerability.”

CPENameOperatorVersion
microsoft:exchange_servermicrosoft exchange servereq2000

CPE	Name	Operator	Version
microsoft:exchange_server	microsoft exchange server	eq	2000

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=526

secunia.com/advisories/25183

www.osvdb.org/34392

www.securityfocus.com/archive/1/468871/100/200/threaded

www.securityfocus.com/bid/23810

www.securitytracker.com/id?1018015

www.us-cert.gov/cas/techalerts/TA07-128A.html

www.vupen.com/english/advisories/2007/1711

docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-026

exchange.xforce.ibmcloud.com/vulnerabilities/33890

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2054

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.158 Low

EPSS

Percentile

95.9%

JSON

Related for CVE-2007-0221

prion1 checkpoint_advisories2 securityvulns3 nessus1