CVE-1999-0385Classic Buffer Overflow in Microsoft Exchange Server

CWE-120Classic Buffer Overflow3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
9.0%
top 7.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Exchange Server
Timeline
PublishedDec 1
Latest updateApr 30

Description

The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: docs.microsoft.comPatch: docs.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-3f84-67w6-pvm9: The LDAP bind function in Exchange 52022-04-30
CVEList
CVE-1999-0385: The LDAP bind function in Exchange 51999-09-29
CVE-1999-0385 — Classic Buffer Overflow in Microsoft | cvebase