MinorRev: Microsoft Security Bulletin MS03-046 - Vulnerability in Exchange Server Could Allow Arbitrary Code Execution (829436)
From: Russ (Russ.Cooper_at_RC.ON.CA)
Date: 10/22/03
- Previous message: Russ: "MinorRev: Microsoft Security Bulletin MS03-045 - Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code Execution (824141)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 21 Oct 2003 21:56:32 -0400 To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Reason for Revision:
V1.1 October 21, 2003: Removed unnecessary information from "Deployment"
in the "Exchange Server 5.5 Service Pack 4" section of "Security Patch
Information."
Microsoft Security Bulletin MS03-046:
Vulnerability in Exchange Server Could Allow Arbitrary Code Execution
(829436)
Bulletin URL:
http://www.microsoft.com/technet/security/bulletin/MS03-046.asp
Summary:
Version Number: V1.1
Revision Date: 10-21-2003
Impact of Vulnerability: Remote Code Execution
Maximum Severity Rating: Critical
Patch(es) Replaced: None
Caveats: None
CVE Number(s): CAN-2003-0714
Tested Software:
Affected Software:
* Microsoft Exchange Server 5.5, Service Pack 4
<http://www.ntbugtraq.com/link/A9E872EA-54B0-4179-8AE9-5648BFB46459.asp>
* Microsoft Exchange 2000 Server, Service Pack 3
<http://www.ntbugtraq.com/link/7BAF5394-1B4E-4937-A570-9F232AE49F01.asp>
Software Not Affected:
* Microsoft Exchange Server 2003
This email is sent to NTBugtraq automatically as a service to my
subscribers. (v2.0)
Cheers,
Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor
-----
Marcus Ranum's new book "The Myth of Homeland Security" is now out and
is available from http://www.amazon.com/ranum In this hard-hitting
review of the homeland security business, Ranum shows us how the problem
is vastly harder than it's being made to sound, and how special
interests, *** covering, and bureaucracy are threatening to derail any
chance of making progress.
-----
