Title: Microsoft Outlook / Exchange Blank Headers DoS Vulnerability
Severity: MODERATE
Description:
Microsoft Outlook and Exchange are both vulnerable to denial of service attacks through incoming email if both bcc: and Reply-to: or Return-Path: and From: fields are left blank. Outlook will crash upon the delivery of these particular email messages and Exchange will produce an error stating that the message is not deliverable and to check for sufficient memory or disk space.
Affected Products:
- Microsoft Exchange Server 4.0
- Microsoft Exchange Server 5.0
- Microsoft Outlook 97 8.2.4212
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
