CVE-2003-0714 – Microsoft Exchange Server 2000 - XEXCH50 Heap Overflow (PoC) (MS03-046)
https://notcve.org/view.php?id=CVE-2003-0714
The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote attackers to cause a denial of service (memory exhaustion) by directly connecting to the SMTP service and sending a certain extended verb request, possibly triggering a buffer overflow in Exchange 2000. El servicio de correo de Internet en Exchange Server 5.5 y Exchange 2000 permite a atacantes remotos causar una denegación de servicio (consumición de memoria) conectándose directamente al servicio SMTP y enviando una cierta petición, posiblemente disparando un desbordamiento de búfer en Exchange 2000. • https://www.exploit-db.com/exploits/113 https://www.exploit-db.com/exploits/16820 http://marc.info/?l=bugtraq&m=106682909006586&w=2 http://www.cert.org/advisories/CA-2003-27.html http://www.kb.cert.org/vuls/id/422156 http://www.securityfocus.com/bid/8838 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-046 • CWE-400: Uncontrolled Resource Consumption •
CVE-2002-1876
https://notcve.org/view.php?id=CVE-2002-1876
Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a large number of rapid requests, which consumes all of the licenses that are granted to Exchange by IIS. • http://online.securityfocus.com/archive/1/286220 http://www.iss.net/security_center/static/9791.php http://www.securityfocus.com/bid/5413 • CWE-400: Uncontrolled Resource Consumption •
CVE-2002-1873
https://notcve.org/view.php?id=CVE-2002-1873
Microsoft Exchange 2000, when used with Microsoft Remote Procedure Call (MSRPC), allows remote attackers to cause a denial of service (crash or memory consumption) via malformed MSRPC calls. • http://online.securityfocus.com/archive/1/286220 http://www.iss.net/security_center/static/9789.php http://www.securityfocus.com/bid/5412 • CWE-400: Uncontrolled Resource Consumption •
CVE-2002-0368
https://notcve.org/view.php?id=CVE-2002-0368
The Store Service in Microsoft Exchange 2000 allows remote attackers to cause a denial of service (CPU consumption) via a mail message with a malformed RFC message attribute, aka "Malformed Mail Attribute can Cause Exchange 2000 to Exhaust CPU Resources." • http://www.iss.net/security_center/static/9195.php http://www.securityfocus.com/bid/4881 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-025 • CWE-400: Uncontrolled Resource Consumption •
CVE-2002-0507
https://notcve.org/view.php?id=CVE-2002-0507
An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually accepted by OWA. Una interacción entre Microsoft Outlook Web Access (OWA) con RSA SecurID permite a usuarios locales evitar la autenticación SecurID para un usuario anterior mediante varios envios de una petición de autenticación OWA con la contraseña adecuada del usuario anterior, que es acaba siendo aceptada por OWA. • http://online.securityfocus.com/archive/1/264705 http://www.iss.net/security_center/static/8681.php http://www.securityfocus.com/bid/4390 • CWE-287: Improper Authentication •