The SMTP (Simple Mail Transfer Protocol) component of Microsoft Windows XP 64-bit Edition, Windows Server 2003, Windows Server 2003 64-bit Edition, and the Exchange Routing Engine component of Exchange Server 2003, allows remote attackers to execute arbitrary code via a malicious DNS response message containing length values that are not properly validated.
Software | From | Fixed in |
---|---|---|
microsoft / exchange_server | 2003 | 2003.x |
microsoft / windows_xp | - | - |
microsoft / windows_server_2003 | r2 | r2.x |