Heap-based Buffer Overflow in Exchange Server SMTP Service

Heap-based Buffer Overflow in Exchange Server SMTP Service

CVE-2005-0560 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Heap-based buffer overflow in the SvrAppendReceivedChunk function in xlsasink.dll in the SMTP service of Exchange Server 2000 and 2003 allows remote attackers to execute arbitrary code via a crafted X-LINK2STATE extended verb request to the SMTP port.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.