Microsoft » Exchange Server » 2000 sp3 : Security Vulnerabilities, CVEs, Published In 2007 (Denial of service)
Integer overflow in the IMAP (IMAP4) support in Microsoft Exchange Server 2000 SP3 allows remote attackers to cause a denial of service (service hang) via crafted literals in an IMAP command, aka the "IMAP Literal Processing Vulnerability."
Max CVSS
7.8
EPSS Score
17.60%
Published
2007-05-08
Updated
2020-04-09
The Exchange Collaboration Data Objects (EXCDO) functionality in Microsoft Exchange Server 2000 SP3, 2003 SP1 and SP2, and 2007 allows remote attackers to cause a denial of service (crash) via an Internet Calendar (iCal) file containing multiple X-MICROSOFT-CDO-MODPROPS (MODPROPS) properties in which the second MODPROPS is longer than the first, which triggers a NULL pointer dereference and an unhandled exception.
Max CVSS
7.8
EPSS Score
25.08%
Published
2007-05-08
Updated
2020-04-09
2 vulnerabilities found