Microsoft ActiveSync WideCharToMultiByte() Function NULL Dereference Remote DoS
Medium Nessus Plugin ID 11435
SynopsisThe remote host contains a data synchronization program that is affected by a remote denial of service attack.
DescriptionThe remote service (probably ActiveSync) could be crashed by sending it a malformed packet advertising a wrong content-length.
An attacker may use this flaw to disable this service remotely. It is not clear at this time if this vulnerability can be used to execute arbitrary code on this host, although it is a possibility.
SolutionThere is no known solution at this time.