Microsoft Exchange X-LINK2STATE Heap Overflow PoC?
Hello, I have a windows 2003 server with Exchange server 2003 and after running PCI DSS scan on my server using http://www.hackerguardian.com the following report on a security hole in MS Exchange: My Exchange server is SP2 and all service packs and updates are installed on it. I know this issue was fixed at Microsoft Security Bulletin MS05-021 but how come SP2 for exchange has this fix and still I am receiving this security hole alert? Is there a way to fix it please? Kind Regards, Asaf
February 3rd, 2010 3:46pm

L.S.I also have this with a security scan from outpost24. Despite the fact I have all security patches and service packs installed and even Microsoft Baseline Security Scanner can't find any missing updates. I think this is some kind of a false positive.Regards,Michel
Free Windows Admin Tool Kit Click here and download it now
February 11th, 2010 1:08pm

Hello Michel, What kind of antivirus you have installed on your server? As my issue started after I have installed Symantec Endpoint 12 and there "Information Foundation" (the antivirus for Exchange) for my exchange 2003. Kind Regards, Asaf
February 11th, 2010 6:37pm

Hello Asaf,we use Avast Professional AntiVirus software.This morning I am running Microsoft Baseline Security scan on all my servers. If they don't report issues I consider my servers safe. I will keep the error message in mind but won't apply an old fix or patch to a completely up to date server.If you find anything interesting about this message, please don't hesitate to reply.Regards,Michel
Free Windows Admin Tool Kit Click here and download it now
February 12th, 2010 10:26am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics