SMTP: Microsoft Exchange TNEF Attachment Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Microsoft Exchange Server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of System.
Extended Description
Microsoft Exchange Server is prone to a remote code-execution vulnerability. Remote attackers may exploit this issue by sending maliciously constructed TNEF-encoded email data to vulnerable servers. This issue will be triggered when a user views or previews the malicious email. Successfully exploiting this issue would allow the attacker to execute arbitrary code on an affected computer in the context of the affected application.
Affected Products
Avaya messaging_application_server,Microsoft exchange_server_2007
References
CVE: CVE-2009-0098
Short Name
SMTP:EXCHANGE:EXCH-TNEF-BO
Severity
Critical
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
Attachment Buffer CVE-2009-0098 Exchange Microsoft Overflow TNEF
Release Date
07/20/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3729
False Positive
Unknown
Vendors
Avaya
Microsoft
CVSS Score
9.3