Microsoft Exchange IMC SMTP EHLO Hostname Overflow

high Nessus Network Monitor Plugin ID 2033

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

A security vulnerability results because of an unchecked buffer in the IMC code that generates the response to the EHLO protocol command. If the buffer were overrun with data it would result in either the failure of the IMC or could allow the attacker to run code in the security context of the IMC, which runs as Exchange 5.5 Service Account.

Solution

Upgrade or patch according to vendor recommendations.

Plugin Details

Severity: High

ID: 2033

Family: SMTP Servers

Published: 8/18/2004

Updated: 3/6/2019

Nessus ID: 11053

Risk Information

VPR

Risk Factor: Medium

Score: 5.8

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS v3

Risk Factor: High

Base Score: 7.3

Temporal Score: 6.4

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:exchange_server

Reference Information

CVE: CVE-2002-0698

BID: 5306