Deeply-nested OWA Request Can Consume Server CPU Availability
This problem can occur if an authenticated GET request for an invalid URL that contains a large number of invalid nested folders is performed against a mailbox. The information store attempts to locate a matching folder for each folder name that requires large amounts of CPU processing.
Who should read this bulletin: System administrators using Microsoft® Exchange 2000.
Impact of vulnerability: Denial of service.
Recommendation: Administrators offering mail service through Outlook Web Access should apply the patch.
Affected Software: Microsoft Exchange 2000 Server Outlook Web Access