Exchange critical patch

Published 18 February 09 04:47 PM

Just in case you’re not on the security announcement lists….

Executive Summary

This security update resolves two privately reported vulnerabilities in Microsoft Exchange Server. The first vulnerability could allow remote code execution if a specially crafted TNEF message is sent to a Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could take complete control of the affected system with Exchange Server service account privileges. The second vulnerability could allow denial of service if a specially crafted MAPI command is sent to a Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could cause the Microsoft Exchange System Attendant service and other services that use the EMSMDB32 provider to stop responding.

More information and guidance on fixing the vulnerability at http://www.microsoft.com/technet/security/bulletin/MS09-003.mspx

by jkruse
Filed under: ,

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Comments

No Comments

Leave a Comment

(required) 
(optional)
(required) 

  
Enter Code Here: Required

This Blog

Syndication

See the latest in UC and video integration the next Sydney UC Community meeting... http://sydneyuc.org

IM me!

Skype me
My status

Photos

www.flickr.com
whassaname's photos More of whassaname's photos

Xbox Live

Zune

Readers of my blog
Locations of visitors to this page

Site disclaimer

Page view tracker