| VID |
18007 |
| Severity |
30 |
| Port |
25 |
| Protocol |
TCP |
| Class |
SMTP |
| Detailed Description |
The Microsoft Windows 2000 Internet Mail Service is vulnerable to a Denial of Service attack through the BDAT command. If exploited, this vulnerability will cause any and all services running under IIS (the inetinfo.exe process) to become unavailable.
An SMTP service installs by default as part of Windows 2000 server products. Exchange 2000, which can only be installed on Windows 2000, uses the native Windows 2000 SMTP service rather than providing its own. In addition, Windows 2000 and Windows XP workstation products provide an SMTP service that is not installed by default. All of these implementations contain a flaw that could enable denial of service attacks to be mounted against the service.
The flaw involves how the service handles a particular type of SMTP command used to transfer the data that constitutes an incoming mail. By sending a command with a malformed data transfer (BDAT) request, an attacker could cause the SMTP service to fail. This would have the effect of disrupting mail services on the affected system, but would not cause the operating system itself to fail.
* References:
http://www.microsoft.com/technet/security/bulletin/ms02-012.asp
http://marc.theaimsgroup.com/?l=bugtraq&m=101558498401274&w=2 |
| Recommendation |
Appy the appropriate patch (Q313450) for your system, as listed in Microsoft Security Bulletin MS02-012, http://www.microsoft.com/technet/security/bulletin/MS02-012.asp |
| Related URL |
CVE-2002-0055 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
