MS.Exchange.ENGLISHMANSDENTIST.Remote.Code.Execution
Description
This indicates an attack attempt to exploit a remote Code Execution vulnerability in Microsoft Exchange Server that was disclosed by Shadow Broker as Easybee exploit.
The vulnerability is due to insufficient sanitizing of user supplied data in the application. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application via a crafted email.
Affected Products
MS Exchange 2000
MS Exchange 2003
MS Exchange 2007
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Life time for affected applications have been reached, so there are no patch/update for this issue as far as we know
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |