POP3: Microsoft Outlook Express Crafted Server Response
This signature detects attempts to exploit a known vulnerability against Microsoft Outlook Express and Windows Mail. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Outlook Express and Windows Mail are prone to a remote integer-overflow vulnerability because the applications fail to perform boundary checks on integer values. Successfully exploiting this issue will allow an attacker to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
Avaya messaging_application_server,Avaya meeting_exchange-streaming_server
References
BugTraq: 39927
CVE: CVE-2010-0816
URL: http://www.microsoft.com/technet/security/bulletin/ms10-030.mspx
Short Name
POP3:OUTLOOK:CRAFTED-RESP
Severity
Major
Recommended
False
Recommended Action
Drop
Category
POP3
Keywords
CVE-2010-0816 Crafted Express Microsoft Outlook Response Server bid:39927
Release Date
05/11/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Avaya
Microsoft
CVSS Score
9.3