Severity: : Medium
  CVE Kennungen: : CVE-2009-0099
  Advisory Date: 15 lutego 2011

  DESCRIPTION

 The Electronic Messaging System Microsoft Data Base (EMSMDB32) provider in Microsoft Exchange 2000 Server SP3 and Exchange Server 2003 SP2, as used in Exchange System Attendant, allows remote attackers to cause a denial of service (application outage) via a malformed MAPI command, aka "Literal Processing Vulnerability."

  INFORMATION EXPOSURE

Trend Micro Deep Security shields networks through Deep Packet Inspection (DPI) rules. Trend Micro customers using OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities. Please refer to the filter number and filter name when applying appropriate DPI and/or IDF rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1003270
  Trend Micro Deep Security DPI Rule Name: 1003270 - Literal Processing Vulnerability

  AFFECTED SOFTWARE AND VERSION:

  • microsoft exchange_server 2000
  • microsoft exchange_server 2003
  • microsoft exchange_server 2007