Signature Detail
Short Name |
SMTP:COMMAND:BDAT |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
SMTP |
Keywords |
Microsoft BDAT DoS |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SMTP: Microsoft BDAT DoS
This signature detects attempts to exploit a known vulnerability against Microsoft SMTP service. A successful attack can result in a denial-of-service condition.
Extended Description
It has been reported that the native Windows 2000 and XP Professional SMTP service encounters difficulties when attempting to handle certain types of malformed SMTP commands. A remote attacker may be able to exploit this condition to cause a denial of SMTP service. The vulnerable software must be restarted to regain normal functionality.
Affected Products
- Microsoft Exchange Server 2000 SP1
- Microsoft Exchange Server 2000 SP2
- Microsoft Exchange Server 2000
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server
- Microsoft Windows XP Professional
References
- BugTraq: 4204
- CVE: CVE-2002-0055
- URL: http://www.microsoft.com/technet/security/bulletin/ms02-012.asp