CVE-2002-0368

Published: Jun 18, 2002Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The Store Service in Microsoft Exchange 2000 allows remote attackers to cause a denial of service (CPU consumption) via a mail message with a malformed RFC message attribute, aka "Malformed Mail Attribute can Cause Exchange 2000 to Exhaust CPU Resources."

Affected (3)

Products: Microsoft: Exchange Server

1 product

Exchange Server

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Microsoft Exchange Server	Version 2000
Microsoft Exchange Server	Version 2000 sp1
Microsoft Exchange Server	Version 2000 sp2

Related CWEs

Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (6)

http://www.iss.net/security_center/static/9195.php

Source: cve@mitre.org

Broken Link

http://www.securityfocus.com/bid/4881

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-025

Source: cve@mitre.org

PatchVendor Advisory

http://www.iss.net/security_center/static/9195.php

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www.securityfocus.com/bid/4881

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-025

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.