Having fun with Microsoft
by Volker Weber
First up we have a potentially crippling exploit with Exchange 2000, in which a malformed mail attribute can spike the system CPU to 100% load while the malicious message is being processed. Re-starting the service or re-booting the Exchange server will not correct it; the process will resume automatically as soon as the service is re-started. Depending on the attacker's ingenuity, a server could be taken down for anywhere from a few seconds to several hours.
