Reported October 31, 2000 by Microsoft

VERSIONS AFFECTED
  • Microsoft Exchange Server 5.5

DESCRIPTION

Microsoft has released a security bulletin and patch to address a security vulnerability that could allow a malicious user to cause a Microsoft Exchange Server to fail.

By sending a particular type of invalid values in certain fields of the MIME header a malicious user could cause Exchange 5.5 to fail causing a system reboot.

VENDOR RESPONSE

Microsoft has released a security bulletin, MS00-0082. A patch is also available at;

http://www.microsoft.com/Downloads/Release.asp?ReleaseID=25443

CREDIT
Discovered by Art Savelev