CVE-2002-0698 - OpenCVE

Buffer overflow in Internet Mail Connector (IMC) for Microsoft Exchange Server 5.5 allows remote attackers to execute arbitrary code via an EHLO request from a system with a long name as obtained through a reverse DNS lookup, which triggers the overflow in IMC's hello response.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	Exchange Server

Configuration 1 [-]

OR	cpe:2.3:a:microsoft:exchange_server:5.5:-::::::
	cpe:2.3:a:microsoft:exchange_server:5.5:sp1::::::
	cpe:2.3:a:microsoft:exchange_server:5.5:sp2::::::
	cpe:2.3:a:microsoft:exchange_server:5.5:sp3::::::
	cpe:2.3:a:microsoft:exchange_server:5.5:sp4::::::

No data.

References

Link	Providers
http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20759
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ326322
http://www.iss.net/security_center/static/9658.php
http://www.securityfocus.com/bid/5306
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-037

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2003-04-02T05:00:00

Updated: 2024-08-08T02:56:38.726Z

Reserved: 2002-07-12T00:00:00

Link: CVE-2002-0698

Vulnrichment

No data.

NVD

Status : Modified

Published: 2002-08-12T04:00:00.000

Modified: 2023-11-07T01:55:53.570

Link: CVE-2002-0698

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-07-24T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in Internet Mail Connector (IMC) for Microsoft Exchange Server 5.5 allows remote attackers to execute arbitrary code via an EHLO request from a system with a long name as obtained through a reverse DNS lookup, which triggers the overflow in IMC's hello response."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2003-03-24T00:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20020724 Remote Buffer Overflow Vulnerability in Microsoft Exchange Server", "tags": ["third-party-advisory", "x_refsource_ISS"], "url": "http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20759"}, {"name": "MS02-037", "tags": ["vendor-advisory", "x_refsource_MS"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-037"}, {"name": "Q326322", "tags": ["vendor-advisory", "x_refsource_MSKB"], "url": "http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ326322"}, {"name": "exchange-imc-ehlo-bo(9658)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/9658.php"}, {"name": "5306", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/5306"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-0698", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in Internet Mail Connector (IMC) for Microsoft Exchange Server 5.5 allows remote attackers to execute arbitrary code via an EHLO request from a system with a long name as obtained through a reverse DNS lookup, which triggers the overflow in IMC's hello response."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20020724 Remote Buffer Overflow Vulnerability in Microsoft Exchange Server", "refsource": "ISS", "url": "http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20759"}, {"name": "MS02-037", "refsource": "MS", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-037"}, {"name": "Q326322", "refsource": "MSKB", "url": "http://support.microsoft.com/default.aspx?scid=kb;[LN];Q326322"}, {"name": "exchange-imc-ehlo-bo(9658)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/9658.php"}, {"name": "5306", "refsource": "BID", "url": "http://www.securityfocus.com/bid/5306"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T02:56:38.726Z"}, "title": "CVE Program Container", "references": [{"name": "20020724 Remote Buffer Overflow Vulnerability in Microsoft Exchange Server", "tags": ["third-party-advisory", "x_refsource_ISS", "x_transferred"], "url": "http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20759"}, {"name": "MS02-037", "tags": ["vendor-advisory", "x_refsource_MS", "x_transferred"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-037"}, {"name": "Q326322", "tags": ["vendor-advisory", "x_refsource_MSKB", "x_transferred"], "url": "http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ326322"}, {"name": "exchange-imc-ehlo-bo(9658)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/9658.php"}, {"name": "5306", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/5306"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-0698", "datePublished": "2003-04-02T05:00:00", "dateReserved": "2002-07-12T00:00:00", "dateUpdated": "2024-08-08T02:56:38.726Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:exchange_server:5.5:-:*:*:*:*:*:*", "matchCriteriaId": "B4F9C143-4734-4E5D-9281-F51513C5CAAF", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:exchange_server:5.5:sp1:*:*:*:*:*:*", "matchCriteriaId": "AD3E2F18-A369-4767-ACEF-38DB40EEC6D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:exchange_server:5.5:sp2:*:*:*:*:*:*", "matchCriteriaId": "EC01670D-4550-4034-86A5-7879B6334241", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:exchange_server:5.5:sp3:*:*:*:*:*:*", "matchCriteriaId": "B80A57A1-7B9F-4C07-ADAA-DBC4687F1EFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:exchange_server:5.5:sp4:*:*:*:*:*:*", "matchCriteriaId": "E3983529-F4E3-4883-97AF-5BFC87AC3E86", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Buffer overflow in Internet Mail Connector (IMC) for Microsoft Exchange Server 5.5 allows remote attackers to execute arbitrary code via an EHLO request from a system with a long name as obtained through a reverse DNS lookup, which triggers the overflow in IMC's hello response."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en Internet Mail Connector (IMC) para Microsoft Exchange Server 5.5 permite que atacantes remotos ejecuten c\u00f3digo arbitrario por medio de una petici\u00f3n EHLO desde un sistema con un nombre largo obtenido por b\u00fasqueda DNS inversa, lo cual provoca el desbordamiento de b\u00fafer en la respuesta de IMC."}], "id": "CVE-2002-0698", "lastModified": "2023-11-07T01:55:53.570", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-08-12T04:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20759"}, {"source": "cve@mitre.org", "url": "http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ326322"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.iss.net/security_center/static/9658.php"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/5306"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-037"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "nvd@nist.gov", "type": "Primary"}]}