New Search

Memory Corruption Vulnerability

oval:org.mitre.oval:def:6114

Microsoft Exchange 2000 Server SP3 Exchange Server 2003 SP2 and Exchange Server 2007 SP1 do not properly interpret Transport Neutral Encapsulation (TNEF) properties which allows remote attackers to execute arbitrary code via a crafted TNEF message aka "Memory Corruption Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
  • Microsoft Windows Vista
  • Microsoft Windows XP
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2003
Class:
vulnerability
Reference(s):
  • CVE-2009-0098
Product(s):
  • Microsoft Exchange Server 2007
  • Microsoft Exchange Server MAPI Client and Collaboration Data Objects 1.2.1
  • Microsoft Exchange Server 2000
  • Microsoft Exchange Server 2003