MS.Exchange.Outlook.TNEF.Decoding.Integer.Overflow

description-logoDescription

This indicates an attack attempt against an Integer Overflow vulnerability in Microsoft Exchange.
The vulnerability is caused by an error when the vulnerable software handles a crafted TNEF context. It allows a remote attacker to execute arbitrary code via sending a crafted mail.

affected-products-logoAffected Products

Microsoft Exchange Server 5.0
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Outlook 2003

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest version.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)