SMTP: Microsoft Exchange Malformed iCal Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Exchange Server. A successful attack can result in a denial-of-service condition.
Extended Description
Microsoft Exchange is prone to a remote denial-of-service vulnerability because it fails to properly handle unexpected iCal message content. Successfully exploiting this issue allows remote attackers to cause targeted Exchange servers to stop responding to further requests for sending, receiving, or accessing email. As a result, denial-of-service conditions occur for legitimate users of affected servers. A denial-of-service condition will persist until an administrator restarts the Microsoft Exchange Information Store service.
Affected Products
Avaya messaging_application_server,Microsoft exchange_server_2003
Short Name
SMTP:EXCHANGE:ICAL-DOS
Severity
Minor
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
CVE-2007-0039 Denial Exchange Malformed Microsoft Service bid:23808 iCal of
Release Date
05/08/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3724
False Positive
Unknown
Vendors
Avaya
Microsoft
CVSS Score
7.8