Описание
Microsoft Exchange 2000 Server SP3, Exchange Server 2003 SP2, and Exchange Server 2007 SP1 do not properly interpret Transport Neutral Encapsulation (TNEF) properties, which allows remote attackers to execute arbitrary code via a crafted TNEF message, aka "Memory Corruption Vulnerability."
Ссылки
- US Government Resource
- US Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:exchange_server:2000:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2003:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2007:sp1:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.62507
Средний
9.3 Critical
CVSS2
Дефекты
CWE-399
Связанные уязвимости
github
почти 4 года назад
Microsoft Exchange 2000 Server SP3, Exchange Server 2003 SP2, and Exchange Server 2007 SP1 do not properly interpret Transport Neutral Encapsulation (TNEF) properties, which allows remote attackers to execute arbitrary code via a crafted TNEF message, aka "Memory Corruption Vulnerability."
EPSS
Процентиль: 98%
0.62507
Средний
9.3 Critical
CVSS2
Дефекты
CWE-399