CVE-2001-0509

Microsoft Exchange Server 2000 and earlier - Denial of Service via Malformed RPC Input

Title source: llm
STIX 2.1

Description

Vulnerabilities in RPC servers in (1) Microsoft Exchange Server 2000 and earlier, (2) Microsoft SQL Server 2000 and earlier, (3) Windows NT 4.0, and (4) Windows 2000 allow remote attackers to cause a denial of service via malformed inputs.

References (2)

Core 2
Core References
Third Party Advisory vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A82
Patch, Vendor Advisory vendor-advisory x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-041

Scores

EPSS 0.1698
EPSS Percentile 96.7%

Details

CWE
CWE-20
Status published
Products (7)
microsoft/exchange_server 5.0
microsoft/exchange_server 5.5
microsoft/exchange_server 2000
microsoft/sql_server 7.0
microsoft/sql_server 2000
microsoft/windows_2000 (2 CPE variants)
microsoft/windows_nt 4.0 (2 CPE variants)
Published Sep 20, 2001
Tracked Since Feb 18, 2026