Microsoft Exchange Server Malformed NNTP AUTHINFO DoS
Remote / Network Access
Denial of Service,
Loss of Availability
Exchange contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker connects to the NNTP port and issues a specific sequence of AUTHINFO commands, and will result in loss of availability for the service.
Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.