Executive Summary
Summary | |
---|---|
Title | Vulnerabilities in Microsoft Exchange and Windows SMTP Service Could Allow Denial of Service (981832) |
Informations | |||
---|---|---|---|
Name | MS10-024 | First vendor Publication | 2010-04-13 |
Vendor | Microsoft | Last vendor Modification | 2010-07-13 |
Severity (Vendor) | Important | Revision | 2.0 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P) | |||
---|---|---|---|
Cvss Base Score | 5 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V2.0 (July 13, 2010): Rereleased bulletin to reoffer the updates for Windows Server 2008 and Windows Server 2008 R2 to address the known issue listed in KB 976323.Summary: This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Microsoft Exchange and Windows SMTP Service. The more severe of these vulnerabilities could allow denial of service if an attacker sent a specially crafted DNS response to a computer running the SMTP service. By default, the SMTP component is not installed on Windows Server 2003, Windows Server 2003 x64 Edition, or Windows XP Professional x64 Edition. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS10-024.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
50 % | CWE-200 | Information Exposure |
50 % | CWE-20 | Improper Input Validation |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:12175 | |||
Oval ID: | oval:org.mitre.oval:def:12175 | ||
Title: | SMTP Memory Allocation Vulnerability | ||
Description: | The SMTP component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Server 2008 Gold, SP2, and R2, and Exchange Server 2000 SP3, does not properly allocate memory for SMTP command replies, which allows remote attackers to read fragments of e-mail messages by sending a series of invalid commands and then sending a STARTTLS command, aka "SMTP Memory Allocation Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0025 | Version: | 13 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 | Product(s): | SMTP Microsoft Exchange Server 2000 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7067 | |||
Oval ID: | oval:org.mitre.oval:def:7067 | ||
Title: | SMTP Server MX Record Vulnerability | ||
Description: | The SMTP component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Server 2008 Gold, SP2, and R2, and Exchange Server 2003 SP2, does not properly parse MX records, which allows remote DNS servers to cause a denial of service (service outage) via a crafted response to a DNS MX record query, aka "SMTP Server MX Record Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0024 | Version: | 11 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 | Product(s): | SMTP Microsoft Exchange Server 2003 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 5 | |
Os | 1 | |
Os | 1 | |
Os | 1 | |
Os | 5 | |
Os | 3 |
OpenVAS Exploits
Date | Description |
---|---|
2010-05-05 | Name : Microsoft Windows SMTP Server DNS spoofing vulnerability File : nvt/gb_ms_smtp_dns_spoofing_vulnerability.nasl |
2010-04-23 | Name : Microsoft Exchange and Windows SMTP Service Denial of Service Vulnerability (... File : nvt/secpod_ms10-024.nasl |
2010-04-22 | Name : Microsoft Windows SMTP Server MX Record Denial of Service Vulnerability File : nvt/gb_ms10_024.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
63739 | Microsoft Windows SMTP / Exchange Server Malformed Command Sequence Remote In... |
63738 | Microsoft Windows SMTP / Exchange Server DNS Mail Exchanger (MX) Resource Rec... |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2010-04-15 | IAVM : 2010-B-0029 - Multiple Vulnerabilities in Microsoft Exchange and Windows SMTP Service Severity : Category II - VMSKEY : V0023955 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | potential dns cache poisoning attempt - mismatched txid RuleID : 21355 - Revision : 5 - Type : PROTOCOL-DNS |
2014-01-10 | dns query - storing query and txid RuleID : 21354 - Revision : 5 - Type : PROTOCOL-DNS |
2014-01-10 | Windows Server2000/2003/2008 SMTP service DNS MX lookup denial of service att... RuleID : 16534 - Revision : 11 - Type : SERVER-OTHER |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2018-04-03 | Name : The remote mail server may be affected by multiple vulnerabilities. File : exchange_ms10-024.nasl - Type : ACT_GATHER_INFO |
2010-04-13 | Name : The remote mail server may be affected by multiple vulnerabilities. File : smb_nt_ms10-024.nasl - Type : ACT_GATHER_INFO |
2010-04-13 | Name : The remote mail server may be affected by multiple vulnerabilities. File : smtp_kb981832.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2016-09-30 01:07:45 |
|
2016-08-31 12:05:41 |
|
2016-08-20 12:08:27 |
|
2016-04-26 22:59:22 |
|
2014-02-17 11:46:31 |
|
2014-01-19 21:30:27 |
|
2013-11-11 12:41:16 |
|
2013-05-11 00:49:37 |
|