30 matches found
EUVD-2002-1855
Malware in sbrugna...
EUVD-2001-0652
Malware in sbrugna...
EUVD-2000-1124
Malware in sbrugna...
CVE-2002-1873
Microsoft Exchange 2000, when used with Microsoft Remote Procedure Call MSRPC, allows remote attackers to cause a denial of service crash or memory consumption via malformed MSRPC calls...
Microsoft Exchange Server日历远程代码执行漏洞(MS06-019)
Microsoft Exchange是一款由微软开发的邮件服务程序。 Exchange Server所提供的EXCDO和CDOEX功能没有正确地处理邮件消息中的某些iCAL和vCAL属性,远程攻击者可以向Exchange Server发送包含有特制vCAL或iCAL属性的邮件消息导致代码执行。 Microsoft Exchange Server 2003 SP2 Microsoft Exchange Server 2003 SP1 Microsoft Exchange Server 2000 临时解决方法: NSFOCUS建议采取如下措施以降低威胁:...
Microsoft Security Bulletin MS06-019 Vulnerability in Microsoft Exchange Could Allow Remote Code Execution (916803)
Microsoft Security Bulletin MS06-019 Vulnerability in Microsoft Exchange Could Allow Remote Code Execution 916803 Published: May 9, 2006 Version: 1.0 Summary Who should read this document: System administrators who use Microsoft Exchange Impact of Vulnerability: Remote Code Execution Maximum...
MS Exchange Server Remote Code Execution Exploit (MS05-021)
Exploit for unknown platform in category remote exploits =========================================================== MS Exchange Server Remote Code Execution Exploit MS05-021 =========================================================== !/bin/perl MS05-021 Exchange X-LINK2STATE Heap Overflow Author...
MS Exchange Server Remote Code Execution Exploit (MS05-021)
漏洞描述:Microsoft Exchange是一款由微软开发的邮件服务程序。Microsoft Exchange Server中存在缓冲区溢出漏洞,攻击者可能利用此漏洞在主机上执行任意指令。 起因是Exchange SMTP Server在处理特殊的扩展SMTP verb时存在缓冲区溢出。漏洞可能允许攻击者连接到Exchange服务器的SMTP端口并发送精心构造的恶意命令,这些命令可能导致拒绝服务或以SMTP服务进程的权限运行攻击者所选择的代码。漏洞影响:受影响的软件: •Microsoft Exchange Server 2000 Service Pack 3 •Microsoft...
CVE-2002-1117
Veritas Backup Exec 8.5 and earlier requires that the "RestrictAnonymous" registry key for Microsoft Exchange 2000 must be set to 0, which enables anonymous listing of the SAM database and shares...
CVE-2002-1117
Technical details for CVE-2002-1117 are not publicly available in the provided connected documents. The available descriptions reiterate the issue regarding RestrictAnonymous, but no affected products/versions or fixes are specified here. Monitor for updates.
CVE-2002-0368
CVE-2002-0368 concerns Microsoft Exchange 2000 where the Store Service can be overwhelmed by a crafted mail message. A remote attacker can trigger a denial of service by sending a message containing a malformed RFC 2822 attribute, causing CPU resource exhaustion and partial availability impact on...
CVE-2002-0368
The Store Service in Microsoft Exchange 2000 allows remote attackers to cause a denial of service CPU consumption via a mail message with a malformed RFC message attribute, aka "Malformed Mail Attribute can Cause Exchange 2000 to Exhaust CPU Resources."...
CVE-2002-1873
Microsoft Exchange 2000, when used with Microsoft Remote Procedure Call MSRPC, allows remote attackers to cause a denial of service crash or memory consumption via malformed MSRPC calls...
CVE-2002-1876
Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a large number of rapid requests, which consumes all of the licenses that are granted to Exchange by IIS...
CVE-2002-1117
Veritas Backup Exec 8.5 and earlier requires that the "RestrictAnonymous" registry key for Microsoft Exchange 2000 must be set to 0, which enables anonymous listing of the SAM database and shares...
CVE-2001-1099
The CVE-2001-1099 entry describes a vulnerability in Norton AntiVirus for Microsoft Exchange 2000 (2.x) where the default configuration can leak the recipient’s INBOX file path. An attacker who sends an email with a malicious attachment can trigger a rejection notice that reveals the path, enabli...
CVE-2001-1099
The default configuration of Norton AntiVirus for Microsoft Exchange 2000 2.x allows remote attackers to identify the recipient's INBOX file path by sending an email with an attachment containing malicious content, which includes the path in the rejection notice...
CVE-2002-0368
The Store Service in Microsoft Exchange 2000 allows remote attackers to cause a denial of service CPU consumption via a mail message with a malformed RFC message attribute, aka "Malformed Mail Attribute can Cause Exchange 2000 to Exhaust CPU Resources."...
Microsoft Exchange 2000 exhausts server resources while attempting to process malformed mail attributes
Overview Microsoft Exchange 2000 contains a vulnerability that allows remote attackers to conduct a denial-of-service attack that once begun, cannot be stopped until the crafted message has been completely processed. Description Microsoft Exchange 2000 contains a vulnerability in its handling of...
CVE-2001-0666
Outlook Web Access (OWA) in Microsoft Exchange 2000 is affected. An authenticated user can trigger a denial of service (CPU consumption) by sending a malformed OWA request for a deeply nested folder in the user’s mailbox, exploiting a vulnerability in OWA request handling. Affected component: OWA...