Detections
Analytics
MS09-003: Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (959239)
critical Nessus Plugin ID 35631
Synopsis
Arbitrary code can be executed on the remote host through the email server.Description
The remote host is running a version of Microsoft Exchange that is affected by a memory corruption vulnerability that could lead to remote code execution when processing a specially crafted TNEF message as well as a denial of service vulnerability when processing a specially crafted MAPI command that could cause the Microsoft Exchange System Attendant service and other services that use the EMSMDB32 provider to stop responding.Solution
Microsoft has released a set of patches for Exchange 2000, 2003, and 2007.See Also
https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2009/ms09-003
Plugin Details
Severity: Critical
ID: 35631
File Name: smb_nt_ms09-003.nasl
Version: 1.27
Type: local
Agent: windows
Family: Windows : Microsoft Bulletins
Published: 2/11/2009
Updated: 1/10/2019
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 8.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/o:microsoft:windows, cpe:/a:microsoft:exchange_server
Required KB Items: SMB/MS_Bulletin_Checks/Possible
Exploit Ease: No known exploits are available
Patch Publication Date: 2/10/2009
Vulnerability Publication Date: 2/10/2009
Reference Information
CVE: CVE-2009-0098, CVE-2009-0099