5 matches found
MS09-003: Microsoft Exchange Remote Code Execution (959239) (Uncredentialed)
The remote host is running a version of Microsoft Exchange that is affected by a memory corruption vulnerability that could lead to remote code execution when processing a specially crafted TNEF message as well as a denial of service vulnerability when processing a specially crafted MAPI command...
Exchange Server TNEF解码内存破坏漏洞(MS09-003)
BUGTRAQ ID: 33134 CVECAN ID: CVE-2009-0098 Microsoft Exchange Server是一款企业级的邮件服务程序。 Microsoft Exchange Server解码消息的传输中性封装格式(TNEF)数据时存在内存破坏漏洞。如果用户预览了以TNEF格式发送的特制邮件消息,或Microsoft Exchange Server Information Store处理了特制的邮件消息,就可以触发这个漏洞,导致执行任意代码。 Microsoft Exchange Server 2007 SP1 Microsoft Exchange Serve...
CVE-2009-0098
Microsoft Exchange 2000 Server SP3, Exchange Server 2003 SP2, and Exchange Server 2007 SP1 do not properly interpret Transport Neutral Encapsulation TNEF properties, which allows remote attackers to execute arbitrary code via a crafted TNEF message, aka "Memory Corruption Vulnerability."...
CVE-2009-0098
CVE-2009-0098 describes a memory corruption vulnerability in Microsoft Exchange Server (2000 SP3, 2003 SP2, 2007 SP1) where TNEF message properties are not interpreted correctly, allowing remote code execution via a crafted TNEF message. Microsoft published MS09-003 detailing the vulnerability an...
Microsoft Exchange Server MS-TNEF Memory Corruption (MS09-003; CVE-2009-0098)
The Microsoft Exchange Server is an implementation of an email server capable of handling numerous Internet protocol, including the Simple Mail Transfer Protocol SMTP. Transport Neutral Encapsulation Format TNEF is a format used by the Microsoft Exchange Server when sending messages formatted as...