Content
(MS09-003) Microsoft Exchange Literal Processing Vulnerability (959239)
- Type
- Logic error
- Impact of exploitation
- Denial of Service
- User Interaction
- user interaction is needed
- Attack Vector
- Malicious remote network traffic
- Rating
- Medium
- CVE reference
- CVE-2009-0099,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Exchange 2000 SP3,
- Exchange 2003 SP2,
- Summary
- A vulnerability in Microsoft Exchange may allow for denial-of-service attacks.
Tab Navigation
Description
A vulnerability in Microsoft Exchange may allow for denial-of-service attacks. The flaw is specific to the method used by the Electronic Messaging System Microsoft Data Base: 32-bit build (EMSMDB2) to process invalid MAPI commands. Explolitation can be achieved via a specially-crafted MAPI message, leading to a denial-of-service condition (application crash).
McAfee Product Mitigation & Recommendations
Recommendations
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-003.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-003) Microsoft Exchange Literal Processing Vulnerability (959239)
- Signature identifier:
- 6423
- Release date:
- 2/10/2009
McAfee Intrushield
- Signature:
- MS-EXCHANGE: Microsoft Exchange System Attendant DoS
- Signature identifier:
- 0x45D08700
- Release date:
- 2/10/2009
- First released in:
- 5.1.12, 4.1.42, 3.1.79
The Remedy V-Flash of 2/10/2009 will contain remedies for Exchange 2000 and Exchange 2003. Exchange 2007 is not supported.
Additional Resources
Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (959239)
http://www.microsoft.com/technet/security/bulletin/ms09-003.mspx
All Information
Timeline -
2/10/2009
Vendor has provided a patch.
Description -
A vulnerability in Microsoft Exchange may allow for denial-of-service attacks. The flaw is specific to the method used by the Electronic Messaging System Microsoft Data Base: 32-bit build (EMSMDB2) to process invalid MAPI commands. Explolitation can be achieved via a specially-crafted MAPI message, leading to a denial-of-service condition (application crash).
McAfee Product Mitigation & Recommendations
Recommendations -
The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-003.mspx
McAfee Product Mitigation
McAfee Foundstone
- Signature:
- (MS09-003) Microsoft Exchange Literal Processing Vulnerability (959239)
- Signature identifier:
- 6423
- Release date:
- 2/10/2009
McAfee Intrushield
- Signature:
- MS-EXCHANGE: Microsoft Exchange System Attendant DoS
- Signature identifier:
- 0x45D08700
- Release date:
- 2/10/2009
- First released in:
- 5.1.12, 4.1.42, 3.1.79
The Remedy V-Flash of 2/10/2009 will contain remedies for Exchange 2000 and Exchange 2003. Exchange 2007 is not supported.
Additional Resources
Additional Resources -
Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (959239)
http://www.microsoft.com/technet/security/bulletin/ms09-003.mspx
