March 4th, 2003, 06:29 PM
Exchange Server and Email exploits
I read to day about a vulnerability in Sendmail that allows a person to gain access to a mail server by sending and email message. http://www.cnn.com/2003/TECH/interne...eut/index.html
Is anyone aware of any similar vulnerabilities with Exchange Server. Is it possible to attack an exchange server with an email or is Exchange Server simply the medium by which malicious code is delivered to users..
Don\'t hate the player... Hate the game!
March 4th, 2003, 06:41 PM
The sendmail vuln is not related in any way to the exchange server, but it's possible that this one, too, might have a bug not discovered yet...
March 4th, 2003, 07:00 PM
i logged on just to post pretty much the same thread, except i read it here http://www.msnbc.com/news/880094.asp?0dm=N11JT
some interesting stuff, at this link they make it sound like just one e-mail could almost break the infastructure...almost but not quite.my guess would be that for some the search is on to find similar vulnerbilities sense this info has been released.
Don\'t be a bitch! Use Slackware.
March 4th, 2003, 07:13 PM
Exchange is in no way using the sendmail code, so the sendmail vulnerability will not surface on Exchange. While it is possible that vulnerabilities exist in exchange or any other product out there, this is always the case.