This script is Copyright (C) 2002-2017 SECNAP Network Security, LLC
The remote host has an application that is affected by a
buffer overflow vulnerability.
A security vulnerability results because of an unchecked
buffer in the IMC code that generates the response to the
EHLO protocol command. If the buffer were overrun with data
it would result in either the failure of the IMC or could allow
the attacker to run code in the security context of the IMC,
which runs as Exchange5.5 Service Account.
** Nessus only uses the banner header to determine
if this vulnerability exists and does not check
for or attempt an actual overflow.
See also :
See the vendor advisory for patch information.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 5.5
Public Exploit Available : false