MS-RPC: Microsoft Exchange Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Exchange. A successful attack can result in a denial-of-service condition. The attack causes the server to exhaust all available memory resources. Multiple attacks may be required to do this.
Extended Description
Microsoft Exchange makes usage of the MSRPC, the Microsoft Remote Procedure Call framework. Several potential issues have been reported in MSRPC, as used in conjunction with Microsoft Exchange. Malformed MSRPC calls may result in either the Exchange server or the underlying operating system crashing. A denial of service condition may result, requiring a restart in order to regain normal functionality.
Affected Products
Microsoft exchange_server_2000
References
BugTraq: 5412
CVE: CVE-2002-1873
URL: http://www.iss.net/security_center/static/9789.php http://online.securityfocus.com/archive/1/286220
Short Name
MS-RPC:EXCHANGE-MEM
Severity
Minor
Recommended
False
Recommended Action
None
Category
MS-RPC
Keywords
CVE-2002-1873 Denial Exchange Microsoft Service bid:5412 of
Release Date
10/17/2006
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Microsoft
CVSS Score
5.0