SID 12619

Msg

"EXPLOIT Microsoft Exchange ical/vcal malformed property"

Summary

This event is generated when an attempt is made to exploit a known vulnerability in exchange srv.

Classtype

attempted-admin

Impact

Denial of Service. Information disclosure. Loss of integrity.

Detailed Information

Unspecified vulnerability in Microsoft Exchange allows remote attackers to execute arbitrary code via e-mail messages with crafted (1) vCal or (2) iCal Calendar properties.

Affected Systems

  • Microsoft exchange srv 3

False Positives

None known.

False Negatives

None known.

Corrective Action

Upgrade to the latest non-affected version of the software.

Apply the appropriate vendor supplied patches.

Contributors

  • Sourcefire Vulnerability Research Team
  • This document was generated from data supplied by the National Vulnerability Database. A product of the National Institute of Standards and Technology.
  • For more information see http://nvd.nist.gov/