Microsoft Exchange IMC SMTP EHLO Hostname Overflow
High Nessus Network Monitor Plugin ID 2033
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionA security vulnerability results because of an unchecked buffer in the IMC code that generates the response to the EHLO protocol command. If the buffer were overrun with data it would result in either the failure of the IMC or could allow the attacker to run code in the security context of the IMC, which runs as Exchange 5.5 Service Account.
SolutionUpgrade or patch according to vendor recommendations.