MS07-026: Vulnerability in Microsoft Exchange Could Allow Remote Code Execution (931832)

This script is Copyright (C) 2006-2017 Tenable Network Security, Inc.

Synopsis :

Arbitrary code can be executed on the remote host through the email server.

Description :

The remote host is running a version of exchange that is vulnerable
to a bug in the iCal attachment and MIME decoding routines, as well
as in the IMAP literal processing and in OWA.

These vulnerabilities could allow an attacker execute arbitrary code on the
remote host.

See also :

Solution :

Microsoft has released a set of patches for Exchange 2000 and 2003.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.4
Public Exploit Available : false

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 25165 ()

Bugtraq ID: 23806

CVE ID: CVE-2007-0220

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now