SMTP Server MX Record Vulnerability

  Severity: MEDIUM
  CVE Identifier: CVE-2010-0024
  Advisory Date: JUL 21, 2015

  DESCRIPTION

The SMTP component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, and Server 2008 Gold, SP2, and R2, and Exchange Server 2003 SP2, does not properly parse MX records, which allows remote DNS servers to cause a denial of service (service outage) via a crafted response to a DNS MX record query, aka "SMTP Server MX Record Vulnerability."

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1004103
  Trend Micro Deep Security DPI Rule Name: 1004103 - SMTP Server MX Record Vulnerability

  AFFECTED SOFTWARE AND VERSION

  • microsoft exchange_server 2000
  • microsoft exchange_server 2003
  • microsoft exchange_server 2007
  • microsoft exchange_server 2010
  • microsoft windows_2000
  • microsoft windows_2003_server
  • microsoft windows_server_2003
  • microsoft windows_server_2008
  • microsoft windows_server_2008 -
  • microsoft windows_xp
  • microsoft windows_xp -