Info

Disclosure

Mar 06, 2002

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Microsoft Windows SMTP service contains a flaw that may allow a remote attacker to cause a denial of service. The issue is due to the server not properly handling data transfer (BDAT) requests. By sending a malformed BDAT request, an attacker can potentially crash the server.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability

Solution

Products

Unknown or Incomplete

References

CVE ID: 2002-0055 (see also: NVD)
OVAL ID: 30
Bugtraq ID: 4204
ISS X-Force ID: 8307
Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=101558498401274&w=2
Generic Exploit URL: http://www.digitaloffense.net/mssmtp/mssmtp_dos.pl
Microsoft Security Bulletin: MS02-012

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/732