Secunia Security Advisory - ISS X-Force has reported a vulnerability in Microsoft Exchange Server, which can be exploited by malicious people to compromise a vulnerable system.
9e0c9c65d1fc56fc766c8235f3f2cef6a85a3796d40aed493bb802095d3b8487
----------------------------------------------------------------------
Want a new IT Security job?
Vacant positions at Secunia:
http://secunia.com/secunia_vacancies/
----------------------------------------------------------------------
TITLE:
Microsoft Exchange SMTP Service Extended Verb Request Buffer Overflow
SECUNIA ADVISORY ID:
SA14920
VERIFY ADVISORY:
http://secunia.com/advisories/14920/
CRITICAL:
Highly critical
IMPACT:
System access
WHERE:
>From remote
SOFTWARE:
Microsoft Exchange Server 2000
http://secunia.com/product/41/
Microsoft Exchange Server 2003
http://secunia.com/product/1828/
DESCRIPTION:
ISS X-Force has reported a vulnerability in Microsoft Exchange
Server, which can be exploited by malicious people to compromise a
vulnerable system.
The vulnerability is caused due to a boundary error in the SMTP
service within the handling of a certain extended verb request. This
can be exploited to cause a heap-based buffer overflow by connecting
to the SMTP service and issuing a specially crafted command.
Successful exploitation allows execution of arbitrary code with the
privileges of the SMTP service (by default "Local System").
NOTE: On Exchange Server 2003, unauthorised users are not able to
execute the affected command. Instead, this requires permissions
usually only granted to other Exchange servers in a domain.
SOLUTION:
Apply patches.
Microsoft Exchange 2000 Server (requires SP3):
http://www.microsoft.com/downloads/details.aspx?FamilyId=2A2AF17E-2E4A-4479-8AC9-B5544EA0BD66
Microsoft Exchange Server 2003:
http://www.microsoft.com/downloads/details.aspx?FamilyId=97F409EB-C8D0-4C94-A67B-5945E26C9267
Microsoft Exchange Server 2003 (requires SP1):
http://www.microsoft.com/downloads/details.aspx?FamilyId=35BCE74A-E84A-4035-BF18-196368F032CC
The following versions are not affected:
* Microsoft Exchange Server 5.5 SP4
* Microsoft Exchange Server 5.0 SP2
PROVIDED AND/OR DISCOVERED BY:
Mark Dowd and Ben Layer, ISS X-Force.
ORIGINAL ADVISORY:
MS05-021 (KB894549):
http://www.microsoft.com/technet/security/Bulletin/MS05-021.mspx
ISS X-Force:
http://xforce.iss.net/xforce/alerts/id/193
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------