Signature Detail
Short Name |
SMTP:EXCHANGE:IMAP-DOS |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
SMTP |
Keywords |
Microsoft Exchange Server IMAP Daemon Denial of Service |
Release Date |
2007/05/08 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
IMAP: Microsoft Exchange Server IMAP Daemon Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Exchange Server. A successful attack can result in a denial-of-service condition.
Extended Description
Microsoft Exchange is prone to a remote denial-of-service vulnerability because it fails to properly handle specially crafted IMAP commands. Successfully exploiting this issue allows remote attackers to cause targeted Exchange servers' mail service to stop responding, thus denying further email service for legitimate users. To recover from the denial-of-service condition, administrators must restart the IIS Admin Service service.
Affected Products
- Avaya Messaging Application Server MM 2.0
- Avaya Messaging Application Server MM 3.0
- Avaya Messaging Application Server MM 3.1
- Avaya Messaging Application Server
- Microsoft Exchange Server 2000 SP1
- Microsoft Exchange Server 2000 SP2
- Microsoft Exchange Server 2000 SP3
- Microsoft Exchange Server 2000
References
- BugTraq: 23810
- CVE: CVE-2007-0221
- URL: http://www.microsoft.com/technet/security/Bulletin/MS07-026.mspx