Microsoft Exchange makes usage of the MSRPC, the Microsoft Remote Procedure Call framework. Several potential issues have been reported in MSRPC, as used in conjunction with Microsoft Exchange.
Malformed MSRPC calls may result in either the Exchange server or the underlying operating system crashing. A denial of service condition may result, requiring a restart in order to regain normal functionality.
Information
Bugtraq ID: | 5412 | Class: | Unknown | CVE: | CVE-2002-1873
| Remote: | Yes | Local: | No | Published: | Aug 06 2002 12:00AM | Updated: | May 31 2019 10:00PM | Credit: | Reported by Dave Aitel <[email protected]>. | Vulnerable: | Microsoft Exchange Server 2000 SP2
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server
Microsoft Exchange Server 2000 SP1
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server
Microsoft Exchange Server 2000
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server
| | Not Vulnerable: | | Exploit
Reportedly, these issues may be exploited with the publically available Spike tool, available at the following URL:
http://www.immunitysec.com/spike.html
