Sec-1 has identified an exploitable buffer overflow within Collaboration Data Objects (Cdosys.dll and Cdoex.dll). The vulnerability exists when event sinks are used within Microsoft Exchange 2000 or Microsoft Mail services to parse e-mail content. Several Content Security packages were identified to be vulnerable/exploitable.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/40726/sec-1-Collarboration.txt
Source: https://packetstormsecurity.com/files/40726/sec-1-Collarboration.txt.html