NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Secunia Advisories> 2003-q3

[sec-adv] Windows SMTP Service Invalid Timestamp Denial of Service

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Wed Jul 16 2003 - 08:00:06 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Windows SMTP Service Invalid Timestamp Denial of Service

READ ONLINE:
http://www.secunia.com/advisories/9286/

CRITICAL:
Moderately critical

IMPACT:
DoS

WHERE:
From remote

OPERATING SYSTEM:

Microsoft Windows 2000 Server

SOFTWARE:
Microsoft Exchange 2000 Enterprise Server
Microsoft Exchange Server 2000

DESCRIPTION:
A vulnerability has been identified in Windows 2000 Server and
Exchange Server 2000, which can be exploited by malicious people to
cause a DoS (Denial of Service) on the SMTP service.

The vulnerability is caused due to an error when handling emails with
invalid timestamps. This can be exploited by sending an email with a
specially crafted FILETIME attribute, which will crash the SMTP
service or cause it to stop responding.

According to Microsoft, the vulnerability exists in the following
products:
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP3
- Microsoft Exchange 2000 Server

SOLUTION:
Apply Windows 2000 Service Pack 4:
http://www.microsoft.com/windows2000/downloads/servicepacks/sp4/default.asp

NOTE: This Service Pack also addresses multiple other issues. For a
list of security fixes see:
http://support.microsoft.com/default.aspx?kbid=821665

ORIGINAL ADVISORY:
http://support.microsoft.com/default.aspx?kbid=330716

OTHER REFERENCES:
http://www.kb.cert.org/vuls/id/155252

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]