4 matches found
Microsoft Exchange X-LINK2STATE buffer overflow
Added: 01/13/2006 CVE: CVE-2005-0560 BID: 13118 OSVDB: 15467 Background Microsoft Exchange is an e-mail server for Microsoft Windows operating systems. Problem A buffer overflow condition in the handling of the X-LINK2STATE extended verb could allow a remote attacker to execute arbitrary commands...
Immunity Canvas: MS05_021
Name| ms05021 ---|--- CVE| CVE-2005-0560 Exploit Pack| CANVAS Description| MS Exchange 2000 MS05-021 X-LINK2STATE heap overflow Notes| CVE Name: CVE-2005-0560 VENDOR: Microsoft MSADV: MS05-021 CVSS: 7.5 CVE Url: https://vulners.com/cve/CVE-2005-0560 Notes: This exploit is reliable over and over...
MS Exchange Server Remote Code Execution Exploit (MS05-021)
漏洞描述:Microsoft Exchange是一款由微软开发的邮件服务程序。Microsoft Exchange Server中存在缓冲区溢出漏洞,攻击者可能利用此漏洞在主机上执行任意指令。 起因是Exchange SMTP Server在处理特殊的扩展SMTP verb时存在缓冲区溢出。漏洞可能允许攻击者连接到Exchange服务器的SMTP端口并发送精心构造的恶意命令,这些命令可能导致拒绝服务或以SMTP服务进程的权限运行攻击者所选择的代码。漏洞影响:受影响的软件: •Microsoft Exchange Server 2000 Service Pack 3 •Microsoft...
CVE-2005-0560
CVE-2005-0560 describes a heap-based buffer overflow in the SvrAppendReceivedChunk function of xlsasink.dll in the SMTP service of Exchange Server 2000 and 2003. The overflow is triggered by a crafted X-LINK2STATE extended verb, potentially allowing remote code execution with the server’s privile...