Signature Detail
Short Name |
APP:EXCHANGE:EMSMDB32-DOS |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Microsoft Exchange EMSMDB32 Denial of Service |
Release Date |
2010/09/17 |
Update Number |
1775 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: Microsoft Exchange EMSMDB32 Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Exchange. A successful attack can result in a denial-of-service condition. Note: This signature covers the issue on Exchange's default port for this process. Under certain circumstances, this port could be changed. It is advised that if you use Exchange EMSMDB on a non-standard port that you adjust the service for this signature appropriately.
Extended Description
Microsoft Exchange Server is prone to a remote denial-of-service vulnerability. A successful exploit allows a remote attacker to cause the application to stop responding, denying service to legitimate users.
Affected Products
- Avaya Messaging Application Server MM 1.1
- Avaya Messaging Application Server MM 2.0
- Avaya Messaging Application Server MM 3.0
- Avaya Messaging Application Server MM 3.1
- Avaya Messaging Application Server
- Microsoft Exchange Server 2000 SP1
- Microsoft Exchange Server 2000 SP2
- Microsoft Exchange Server 2000 SP3
- Microsoft Exchange Server 2000
- Microsoft Exchange Server 2003 SP1
- Microsoft Exchange Server 2003 SP2
- Microsoft Exchange Server 2003
- Microsoft Exchange Server MAPI Client 1.2.1
References
- BugTraq: 33136
- CVE: CVE-2009-0099