CVE-2009-0098 Information

Feb 14, 2021 cve

Description

Microsoft Exchange 2000 Server SP3 Exchange Server 2003 SP2 and Exchange Server 2007 SP1 do not properly interpret Transport Neutral Encapsulation (TNEF) properties which allows remote attackers to execute arbitrary code via a crafted TNEF message aka \Memory Corruption Vulnerability.\

Reference

http://osvdb.org/51837 http://secunia.com/advisories/33838 http://www.us-cert.gov/cas/techalerts/TA09-041A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-003 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A6114

Share on: