Normally one doesn’t have to say something like this but, I’d rather you were all safe rather than sorry. One of the real possible dangers if enterprises choose not to patch their Exchange servers is that this vulnerability can be worm-ified. In all honesty by the time this is posted it is very possible that a proof of concept may already be roaming the wilds on the interweb.
The flaw might be exploited by hackers by sending a specially crafted email message with malformed vCal or iCal properties to a vulnerable server. Administrators running either Exchange 2000 or Exchange 2003 servers need to apply patches.
So, get on your bike. Patch your systems ASAP.
[tags]Exchange, Microsoft, MS06-019, Patch, Vulnerability[/tags]
