MS.Exchange.Outlook.TNEF.Decoding.Integer.Overflow
Description
This indicates an attack attempt against an Integer Overflow vulnerability in Microsoft Exchange.
The vulnerability is caused by an error when the vulnerable software handles a crafted TNEF context. It allows a remote attacker to execute arbitrary code via sending a crafted mail.
Affected Products
Microsoft Exchange Server 5.0
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Outlook 2003
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |