MS10-106: Vulnerability in Microsoft Exchange Server Could Allow Denial of Service (2407132)
Medium Nessus Plugin ID 51178
SynopsisThe remote mail server has a denial of service vulnerability.
DescriptionThe version of Microsoft Exchange 2007 running on the remote host has a denial of service vulnerability. The Exchange service does not process specially crafted RPC calls correctly, resulting in an infinite loop.
A remote, authenticated attacker could exploit this by making a specially crafted RPC call, causing the service to become non-responsive.
SolutionMicrosoft has released a patch for Microsoft Exchange 2007 SP2 for x64 systems.