Title: Microsoft Exchange 2000 Server EUSR_EXSTOREEVENT Account Vulnerability
Severity: MODERATE
Description:
Microsoft Exchange 2000 Server is a messaging and collaboration application designed specifically for Windows 2000.
During the installation of Exchange 2000 Server, the user account EUSR_EXSTOREEVENT is automatically created. It is assigned a simple hard coded password and the privilege level the account possesses depends on what type of server Exchange is installed on. If Exchange is installed on a member server, the EUSR_EXSTOREEVENT would have the same privileges equivalent to a normal local user. However, if it is installed on a domain controller, the account would possess Domain User rights which would heighten the impact a malicious user may have because their actions may span across an entire domain.
A remote intruder could log onto Exchange 2000 Server if they were aware of the username and password. Successful exploitation would grant the user access to files that the EUSR_EXSTOREEVENT account had read, write, and execute permissions to. The malicious user may also install other programs or exploit other vulnerabilities in order to aid them in escalating their privilege level.
Affected Products:
- Microsoft Exchange Server 2000
References:
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
