Mail Flooding Vulnerability in Microsoft Email Clients
CVE-2000-0216

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook; Exchange Server; Windows Messaging
Vendor: CVE Published:; 29 February 2000

Summary

The vulnerability in Microsoft email clients such as Outlook, Exchange, and Windows Messaging allows attackers to spoof Read Receipt and Delivery Receipt requests. By doing so, an attacker can initiate a mail flooding attack on systems using these clients. This results in a significant burden on mail servers, as responses to these forged requests may overwhelm the mail system, disrupting normal operations and affecting user access.

References

http://archives.neohapsis.com/archives/ntbugtraq/2000-q1/...

mailing-listx_refsource_NTBUGTRAQ

EPSS Score

13% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Mar 22, 2000
Vulnerability published
Feb 29, 2000